The WP Data Access WordPress plugin prior to 5.0.0 does not properly sanitise and escape the backup_date parameter before using it a SQL statement, leading to a SQL injection issue and could allow arbitrary table deletion
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
wpdataaccess wp data access |