CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Kohsei-Works: >> Yes/no Chart >> 1.0.3 Security Vulnerabilities

CVE-2021-24360

The Yes/No Chart WordPress plugin before 1.0.12 did not sanitise its sid shortcode parameter before using it in a SQL statement, allowing medium privilege users (contributor+) to perform Blind SQL Injection attacks

CVSS Score

6.5

EPSS Score

0.005

Published

2021-06-14

Page 1

Vulnerabilities

Vulnerable Software

Kohsei-Works: >> Yes/no Chart >> 1.0.3 Security Vulnerabilities

Products

Pricing

Contact Us