The Note Press WordPress plugin up to and including 0.1.10 does not sanitise and escape the ids from the bulk actions before using them in a SQL statement in an admin page, leading to an SQL injection
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
datainterlock note press |