Mainwp: >> Mainwp Child Reports Security Vulnerabilities
Cross-Site Request Forgery (CSRF) vulnerability in MainWP MainWP Child Reports.This issue affects MainWP Child Reports: from n/a through 2.1.1.
CVSS Score
5.4
EPSS Score
0.001
Published
2024-04-26
The MainWP Child Reports WordPress plugin before 2.0.8 does not validate or sanitise the order parameter before using it in a SQL statement in the admin dashboard, leading to an SQL injection issue
CVSS Score
7.2
EPSS Score
0.006
Published
2021-10-18