Name

wpdatatables

SeverityCRITICAL
Projectwpdatatables
Version end exclude3.4.1
DescriptionwpDataTables before 3.4.1 mishandles order direction for server-side tables, aka admin-ajax.php?action=get_wdtable order[0][dir] SQL injection.
Publication Date2021-02-08 00:15:00
Modified Date2021-02-09 14:48:00

Reference

Namehttps://n4nj0.github.io/advisories/wordpress-plugin-wpdatatables-i/
Urlhttps://n4nj0.github.io/advisories/wordpress-plugin-wpdatatables-i/