CVE-2020-35012

The Events Manager WordPress plugin before 5.9.8 does not sanitise and escape a parameter before using it in a SQL statement, leading to an SQL Injection
Configurations

Configuration 1

cpe:2.3:a:wp-events-plugin:events_manager:*:*:*:*:*:wordpress:*:*

Information

Published : 2021-12-01 11:15

Updated : 2021-12-03 01:39


NVD link : CVE-2020-35012

Mitre link : CVE-2020-35012

Products Affected
No products.
CWE