← Back to CVE List
CVE-2021-24727
The StopBadBots WordPress plugin before 6.60 did not validate or escape the order and orderby GET parameter in some of its admin dashboard pages, leading to Authenticated SQL Injections
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt