CVE-2021-24131

CVE-2021-24131: Anti-Spam by CleanTalk < 5.149 - Multiple Authenticated SQL Injections

Vendor Unknown
Product Anti-Spam by CleanTalk
Weakness CWE-89 · SQLi
Published March 18, 2021
Last update August 3, 2024

CVSS base score

What the vulnerability does

01Description

Unvalidated input in the Anti-Spam by CleanTalk WordPress plugin, versions before 5.149, lead to multiple authenticated SQL injection vulnerabilities, however, it requires high privilege user (admin+).

Key dates

02Disclosure timeline

March 18, 2021 CVE published
August 3, 2024 Record updated