Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Export Users With Meta < 0.6.5 - Authenticated SQL Injection
Vulnerability Description
The Export Users With Meta WordPress plugin before 0.6.5 did not escape the list of roles to export before using them in a SQL statement in the export functionality, available to admins, leading to an authenticated SQL Injection.
CVSS Information
N/A
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
WordPress 插件 SQL注入漏洞
Vulnerability Description
WordPress 插件是WordPress开源的一个应用插件。 WordPress插件在0.6.5之前存在SQL注入漏洞,该漏洞源于在0.6.5之前的Meta WordPress插件的导出用户没有转义要导出的角色列表,然后在导出功能的SQL语句中使用它们,管理员可以使用,导致一个经过验证的SQL注入。
CVSS Information
N/A
Vulnerability Type
N/A