The Events Manager WordPress plugin before 5.9.8 does not sanitise and escape a parameter before using it in a SQL statement, leading to an SQL Injection
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: WPScan
Published: 2021-12-01T22:50:10
Updated: 2024-08-04T16:55:10.657Z
Reserved: 2021-11-29T00:00:00
Link: CVE-2020-35012
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-12-01T23:15:07.367
Modified: 2021-12-03T13:39:58.817
Link: CVE-2020-35012
Redhat
No data.