漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Infility Global < 2.15.19 - Subscriber+ SQL Injection via order Parameter
Vulnerability Description
The Infility Global WordPress plugin before 2.15.19 does not properly sanitize and escape some parameters before using them in SQL statements, leading to a SQL Injection vulnerability exploitable by authenticated users with Subscriber-level access and above.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Infility Global SQL注入漏洞
Vulnerability Description
infility global是infility个人开发者的一个全球化服务平台。 Infility Global 2.15.19之前版本存在SQL注入漏洞,该漏洞源于未正确清理和转义参数,可能导致SQL注入攻击。
CVSS Information
N/A
Vulnerability Type
N/A