Lucene search
China National Vulnerability DatabaseCNVD-2022-68910HistoryAug 05, 2021 - 12:00 a.m.
WordPress Quiz Maker plugin SQL injection vulnerability
2021-08-0500:00:00
China National Vulnerability Database
www.cnvd.org.cn
4
wordpress
quiz maker
sql injection
vulnerability
admin dashboard
php
sql statements
validation
escape
EPSS
0.001
Percentile
37.0%
WordPress is the Wordpress Foundation’s set of blogging platforms developed using the PHP language. The Quiz Maker plugin is an application plugin for WordPress. SQL injection vulnerability exists in versions of the WordPress Quiz Maker plugin prior to 6.2.0.9, which stems from the plugin’s failure to properly validate and escape the order and orderby parameters in SQL statements are not properly validated and escaped, an attacker can use this vulnerability to cause a SQL injection issue in the admin dashboard.
Related
nvd
nvd
CVE-2021-24456
2021-08-02 11:15:09
cvelist
cvelist
prion
prion
Sql injection
2021-08-02 11:15:00
wpvulndb
wpvulndb
Quiz Maker < 6.2.0.9 - Multiple Authenticated Blind SQL Injections
2021-06-29 00:00:00
wpexploit
wpexploit
Quiz Maker < 6.2.0.9 - Multiple Authenticated Blind SQL Injections
2021-06-29 00:00:00
patchstack
patchstack
cve
cve
CVE-2021-24456
2021-08-02 11:15:09