mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-27 14:32:30 +02:00
0xMarcio
704 B
704 B
CVE-2021-26754
Description
wpDataTables before 3.4.1 mishandles order direction for server-side tables, aka admin-ajax.php?action=get_wdtable order[0][dir] SQL injection.
POC
Reference
- https://n4nj0.github.io/advisories/wordpress-plugin-wpdatatables-i/
- https://n4nj0.github.io/advisories/wordpress-plugin-wpdatatables-i/
Github
No PoCs found on GitHub currently.