Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Smartypantsplugins Subscribe
Filtered by product Sp Rental Manager
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-38324 1 Smartypantsplugins 1 Sp Rental Manager 2021-09-22 5.0 MEDIUM 7.5 HIGH
The SP Rental Manager WordPress plugin is vulnerable to SQL Injection via the orderby parameter found in the ~/user/shortcodes.php file which allows attackers to retrieve information contained in a site's database, in versions up to and including 1.5.3.