CVE-2021-25023
N/A
N/A
Summary
The Speed Booster Pack ⚡ PageSpeed Optimization Suite WordPress plugin before 4.3.3.1 does not escape the sbp_convert_table_name parameter before using it in a SQL statement to convert the related table, leading to an SQL injection
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Unknown | Speed Booster Pack ⚡ PageSpeed Optimization Suite | 4.3.3.1 < 4.3.3.1 | affected |
Weaknesses
- CWE-89: CWE-89 SQL Injection
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.