The Paytm – Donation Plugin WordPress plugin up to and including 1.3.2 does not sanitise, validate or escape the id GET parameter before using it in a SQL statement when deleting donations, leading to an authenticated SQL injection issue
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
freelancetoindia paytm-pay |