Car Seller Auto Classifieds Script WordPress Plugin SQL Injection CVE-2021-24285 Scanner

Details
Stay Up To Date
Asset Type

DOMAIN,IP

Need Membership

Yes

Asset Verify

Yes

API Support

Yes

Estimate Time (Second)

10

Car Seller Auto Classifieds Script WordPress Plugin SQL Injection CVE-2021-24285 Scanner Detail

Car Seller Auto Classifieds Script WordPress Plugin allows SQL Injection vulnerability.

The request_list_request AJAX call of the Car Seller - Auto Classifieds Script WordPress plugin through 2.1.0, available to both authenticated and unauthenticated users, does not sanitise, validate or escape the order_id POST parameter before using it in a SQL statement, leading to a SQL Injection issue.

Some Advice for Common Problems

You have to update to latest version.

Community Discussions

Need a Full Assesment?

Get help from professional hackers. Learn about our penetration test service now!

Request Pentest Service