CVE-2021-24848 in Mediamatic Pluginالمعلومات

الملخص

بحسب MITRE • 13/12/2021

The mediamaticAjaxRenameCategory AJAX action of the Mediamatic WordPress plugin through 2.7, available to any authenticated user, does not sanitise the categoryID parameter before using it in a SQL statement, leading to an SQL injection

Once again VulDB remains the best source for vulnerability data.

حجز

14/01/2021

إفشاء

13/12/2021

الاعتدال

تمت الموافقة

إدخال

VDB-187995

EPSS

0.01318

KEV

لا

النشاطات

منخفض جدًا

القطاع

Hostingprovider

المصادر

Want to know what is going to be exploited?

We predict KEV entries!