Unvalidated input in the AccessPress Social Icons plugin, versions prior to 1.8.1, did not sanitise its widget attribute, allowing accounts with post permission, such as author, to perform SQL injections.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
accesspressthemes accesspress social icons |