[WordPress Dokan Plugin](versions 3.7.12 and older) Vulnerability to SQL Injection
Importance (CVSS3.0)
★★★★★★★☆☆☆ 7.1 / 10 - High
Details
A SQL Injection vulnerability was discovered in WordPress Dokan Plugin.
This vulnerability allows malicious attackers to interact with the databases directly, potentially steal information and create new administrator accounts.
This vulnerability is fixed in version 3.7.13.
Solutions
Update WordPress Dokan Plugin to the latest version (at least 3.7.13)
Source
We provide information about critical vulnerabilities of WordPress for people who are using or are considering using Wordpress for their projects.
“[WordPress Dokan Plugin](versions 3.7.12 and older) Vulnerability to SQL Injection”, by WS Security is licensed under CC BY 4.0.
Comentarios