Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin RSS Aggregator by Feedzy-Feed to Post Autoblogging News YouTube Video Feeds Aggregator SQL Injection - CVE-2024-1317 - Vulnerability Database
WP Plugin Feedzy Rss Feeds

WordPress Plugin RSS Aggregator by Feedzy-Feed to Post Autoblogging News YouTube Video Feeds Aggregator SQL Injection - CVE-2024-1317

High
Reference: CVE-2024-1317
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2024-1317
Title: WordPress Plugin RSS Aggregator by Feedzy-Feed to Post Autoblogging News YouTube Video Feeds Aggregator SQL Injection
Overview:

WordPress Plugin RSS Aggregator by Feedzy-Feed to Post Autoblogging News YouTube Video Feeds Aggregator is prone to an SQL injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application access or modify data or exploit latent vulnerabilities in the underlying database. WordPress Plugin RSS Aggregator by Feedzy-Feed to Post Autoblogging News YouTube Video Feeds Aggregator version 4.4.2 is vulnerable prior versions may also be affected.