← Back to CVE List
CVE-2021-25045
The Asgaros Forum WordPress plugin before 1.15.15 does not validate or escape the forum_id parameter before using it in a SQL statement when editing a forum, leading to an SQL injection issue
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt