VYPR
Unrated severityNVD Advisory· Published Jan 17, 2022· Updated Aug 3, 2024

All In One SEO < 4.1.5.3 - Authenticated SQL Injection

CVE-2021-25037

Description

The All in One SEO WordPress plugin before 4.1.5.3 is affected by an authenticated SQL injection issue, which was discovered during an internal audit by the Jetpack Scan team, and could grant attackers access to privileged information from the affected site’s database (e.g., usernames and hashed passwords).

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.