← Back to CVE List
CVE-2021-24629
The Post Content XMLRPC WordPress plugin through 1.0 does not sanitise or escape multiple GET/POST parameters before using them in SQL statements in the admin dashboard, leading to an authenticated SQL Injections
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt