← Back

Sp Rental Manager

sp_rental_manager

Vendor: Smartypantsplugins • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-38324
1Smartypantsplugins
1Sp Rental Manager
Nov 21, 2024
Sep 9, 2021
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
The SP Rental Manager WordPress plugin is vulnerable to SQL Injection via the orderby parameter found in the ~/user/shortcodes.php file which allows attackers to retrieve information contained in a site's database, in ve...Show more
The SP Rental Manager WordPress plugin is vulnerable to SQL Injection via the orderby parameter found in the ~/user/shortcodes.php file which allows attackers to retrieve information contained in a site's database, in versions up to and including 1.5.3.Show less