VYPR
High severity7.1OSV Advisory· Published Jan 21, 2026· Updated Apr 15, 2026

CVE-2021-47872

CVE-2021-47872

Description

SEO Panel versions prior to 4.9.0 contain a blind SQL injection vulnerability in the archive.php page that allows authenticated attackers to manipulate database queries through the 'order_col' parameter. Attackers can use sqlmap to exploit the vulnerability and extract database information by injecting malicious SQL code into the order column parameter.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Seopanel/SeopanelOSV2 versions
    4.2.0, 4.3.0, 4.4.0, …+ 1 more
    • (no CPE)range: 4.2.0, 4.3.0, 4.4.0, …
    • (no CPE)range: <4.9.0

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.