The Side Menu Lite – add sticky fixed buttons WordPress plugin before 2.2.1 does not properly sanitize input values from the browser when building an SQL statement. Users with the administrator role or permission to manage this plugin could perform an SQL Injection attack.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: WPScan

Published: 2021-08-09T10:04:14

Updated: 2024-08-03T19:35:19.972Z

Reserved: 2021-01-14T00:00:00

Link: CVE-2021-24521

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-08-09T10:15:08.047

Modified: 2024-11-21T05:53:13.730

Link: CVE-2021-24521

cve-icon Redhat

No data.