The Web Directory Free WordPress plugin before 1.7.0 does...
Critical severity
Unreviewed
Published
Jun 13, 2024
to the GitHub Advisory Database
•
Updated Jul 2, 2024
Description
Published by the National Vulnerability Database
Jun 13, 2024
Published to the GitHub Advisory Database
Jun 13, 2024
Last updated
Jul 2, 2024
The Web Directory Free WordPress plugin before 1.7.0 does not sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection with different techniques like UNION, Time-Based and Error-Based.
References