High severity7.2NVD Advisory· Published Nov 8, 2021· Updated Jun 17, 2026
CVE-2021-24629
CVE-2021-24629
Description
The Post Content XMLRPC WordPress plugin through 1.0 does not sanitise or escape multiple GET/POST parameters before using them in SQL statements in the admin dashboard, leading to an authenticated SQL Injections
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Post Content XMLRPCdescription
- Range: <=1.0
Patches
Vulnerability mechanics
References
2- codevigilant.com/disclosure/2021/wp-plugin-post-content-xmlrpc/nvdExploitThird Party Advisory
- wpscan.com/vulnerability/fb42980c-93e5-42d5-a478-c2b348eaea67nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.