pang0lin

4 exploits Active since Aug 2021
CVE-2021-24520 WRITEUP HIGH WRITEUP
Out of Stock Message for WooCommerce < 1.0.4 - Authenticated SQL Injection
The Stock in & out WordPress plugin through 1.0.4 lacks proper sanitization before passing variables to an SQL request, making it vulnerable to SQL Injection attacks. Users with a role of contributor or higher can exploit this vulnerability.
CVSS 8.8
CVE-2021-24521 WRITEUP HIGH WRITEUP
Side Menu Lite < 2.2.1 - Authenticated SQL Injection
The Side Menu Lite – add sticky fixed buttons WordPress plugin before 2.2.1 does not properly sanitize input values from the browser when building an SQL statement. Users with the administrator role or permission to manage this plugin could perform an SQL Injection attack.
CVSS 7.2
CVE-2021-32441 WRITEUP HIGH WRITEUP
Exponent CMS 2.6.0-2.6.9 - SQL Injection via expConfig selectValue Function
SQL Injection vulnerability in Exponent-CMS v.2.6.0 fixed in 2.7.0 allows attackers to gain access to sensitive information via the selectValue function in the expConfig class.
CVSS 7.5
CVE-2021-4225 WRITEUP HIGH WRITEUP
SP Project & Document Manager WordPress <4.24 - Auth Bypass
The SP Project & Document Manager WordPress plugin before 4.24 allows any authenticated users, such as subscribers, to upload files. The plugin attempts to prevent PHP and other similar files that could be executed on the server from being uploaded by checking the file extension. It was discovered that on Windows servers, the security checks in place were insufficient, enabling bad actors to potentially upload backdoors on vulnerable sites.
CVSS 8.8