CVE-2021-24137

Summary

Unvalidated input in the Blog2Social WordPress plugin, versions before 6.3.1, lead to SQL Injection in the Re-Share Posts feature, allowing authenticated users to inject arbitrary SQL commands.

Affected Software

VendorProductVersion RangeStatus
UnknownBlog2Social: Social Media Auto Post & Scheduler6.3.1 < 6.3.1affected

Weaknesses

  • CWE-89: CWE-89 SQL Injection

ADP Enrichment

CVE Program Container

Additional References

References