The WPcalc WordPress plugin up to and including 2.1 does not sanitize user input into the 'did' parameter and uses it in a SQL statement, leading to an authenticated SQL Injection vulnerability.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
wow-company wpcalc |