Description
An SQL Injection vulnerability exists in the league_id parameter of a function call made by the leaguemanager_export page.
Recommendation
To mitigate the risk, update the affected plugin to a secure version. If an update is not available or feasible, consider removing the plugin from your WordPress installation.
References
Related Issues
- Joomla! 'J2Store < 3.3.7' SQL Injection - CVE-2019-9184
- WordPress Plugin Tune Library 2.17 SQLI - Vulnerability
- WordPress Plugin Wpfilemanager 6.8 RCE - CVE-2020-25213
- WordPress Plugin File Groups 1.1.2 SQLI - Vulnerability
- Tags:
- Wordpress
- SQL Injection
Anything's wrong? Let us know Last updated on May 13, 2024