CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Wowonder: >> Wowonder >> 1.3.2 Security Vulnerabilities

CVE-2021-26935

In WoWonder < 3.1, remote attackers can gain access to the database by exploiting a requests.php?f=search-my-followers SQL Injection vulnerability via the event_id parameter.

CVSS Score

7.5

EPSS Score

0.006

Published

2021-03-18

Page 1

Vulnerabilities

Vulnerable Software

Wowonder: >> Wowonder >> 1.3.2 Security Vulnerabilities

Products

Pricing

Contact Us