Vulnerabilities > Gvectors > Wpdiscuz > Critical

DATE CVE VULNERABILITY TITLE RISK
2020-06-18 CVE-2020-13640 SQL Injection vulnerability in Gvectors Wpdiscuz
A SQL injection issue in the gVectors wpDiscuz plugin 5.3.5 and earlier for WordPress allows remote attackers to execute arbitrary SQL commands via the order parameter of a wpdLoadMoreComments request.
network
low complexity
gvectors CWE-89
critical
9.8