CVE-2021-26935

In WoWonder < 3.1, remote attackers can gain access to the database by exploiting a requests.php?f=search-my-followers SQL Injection vulnerability via the event_id parameter. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt