The My wpdb WordPress plugin before 2.5 is missing CSRF check when running SQL queries, which could allow attacker to make a logged in admin run arbitrary SQL query via a CSRF attack
Affected Software
Name |
Vendor |
Start Version |
End Version |
My_wpdb |
My_wpdb_project |
* |
2.5 (excluding) |
References