VYPR
High severity8.8NVD Advisory· Published Sep 14, 2020· Updated Jun 17, 2026

CVE-2020-25379

CVE-2020-25379

Description

Wordpress Plugin Store / Mike Rooijackers Recall Products V0.8 fails to sanitize input from the 'Manufacturer[]' parameter which allows an authenticated attacker to inject a malicious SQL query.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.