Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Etoile Ultimate Product Catalog plugin 4.2.11 for WordPress has SQL injection with these wp-admin/admin-ajax.php POST actions: catalogue_update_order list-item, video_update_order video-item, image_update_order list-item, tag_group_update_order list_item, category_products_update_order category-product-item, custom_fields_update_order field-item, categories_update_order category-item, subcategories_update_order subcategory-item, and tags_update_order tag-list-item.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
WordPress Etoile Ultimate Product Catalog插件SQL注入漏洞
Vulnerability Description
WordPress是WordPress软件基金会的一套使用PHP语言开发的博客平台,该平台支持在PHP和MySQL的服务器上架设个人博客网站。WordPress Etoile Ultimate Product Catalog是其中的一个产品目录编辑管理组件。Add Product Manually是其中的一个产品手动添加组件。 WordPress Etoile Ultimate Product Catalog插件4.2.11版本中存在SQL注入漏洞。远程攻击者可利用该漏洞注入任意的SQL命令。
CVSS Information
N/A
Vulnerability Type
N/A