CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Admincolumns: >> Admin Columns >> 4.3 Security Vulnerabilities

CVE-2021-24365

The Admin Columns WordPress plugin Free before 4.3.2 and Pro before 5.5.2 allowed to configure individual columns for tables. Each column had a type. The type "Custom Field" allowed to choose an arbitrary database column to display in the table. There was no escaping applied to the contents of "Custom Field" columns.

CVSS Score

5.4

EPSS Score

0.003

Published

2021-07-12

Page 1

Vulnerabilities

Vulnerable Software

Admincolumns: >> Admin Columns >> 4.3 Security Vulnerabilities

Products

Pricing

Contact Us