wpDiscuz < 5.3.6 - Unauthenticated SQL Injection

Affects Plugin

fixed in version 5.3.6

References

CVE 2020-13640
URL https://wpdiscuz.com/community/news/security-vulnerability-issue-in-5-3-5-please-udate/

Classification

Type SQLI
OWASP Top 10 A1: Injection
CWE CWE-89

Miscellaneous

Views 928
Verified No
WPVDB ID 10273

Timeline

Publicly Published 2020-06-12 (about 1 month ago)
Added 2020-06-18 (27 days ago)
Last Updated 2020-06-19 (26 days ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin