High severity7.2NVD Advisory· Published Dec 1, 2021· Updated Jun 17, 2026
CVE-2020-35012
CVE-2020-35012
Description
The Events Manager WordPress plugin before 5.9.8 does not sanitise and escape a parameter before using it in a SQL statement, leading to an SQL Injection
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Events Managerdescription
Patches
Vulnerability mechanics
References
2- plugins.trac.wordpress.org/changeset/2336019/events-managernvdPatchThird Party Advisory
- wpscan.com/vulnerability/323140b1-66c4-4e7d-85a4-1c922e40866fnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.