📦

spidercatalog

Vendor: web-dorado

Login to add this product to WatchStack
Actively Exploited 0 CISA KEV List
PoC / Exploits 0 Code Available
Total RCEs 0 Remote Access
Total CVEs 1 Total Indexed
Avg. EPSS 0.57% Exploit Prob.
Latest CVE CVE-2021-24625 Nov 08

Security Vulnerability Index

Page 1 / 1
7.2 CVSS
CVE-2021-24625

The SpiderCatalog WordPress plugin through 1.7.3 does not sanitise or escape the 'parent' and 'ordering' parameters from the admin dashboard before using them in a SQL statement, leading to a SQL injection when adding a category

EPSS: 0.57%