Vulnerabilities > TMS Outsource > Wpdatatables > 2.8.3

DATE CVE VULNERABILITY TITLE RISK
2021-04-12 CVE-2021-24200 Unspecified vulnerability in Tms-Outsource Wpdatatables
The wpDataTables – Tables & Table Charts premium WordPress plugin before 3.4.2 allows a low privilege authenticated user to perform Boolean-based blind SQL Injection in the table list page on the endpoint /wp-admin/admin-ajax.php?action=get_wdtable&table_id=1, on the 'length' HTTP POST parameter.
network
low complexity
tms-outsource
6.5
6.5
2021-04-12 CVE-2021-24199 Unspecified vulnerability in Tms-Outsource Wpdatatables
The wpDataTables – Tables & Table Charts premium WordPress plugin before 3.4.2 allows a low privilege authenticated user to perform Boolean-based blind SQL Injection in the table list page on the endpoint /wp-admin/admin-ajax.php?action=get_wdtable&table_id=1, on the 'start' HTTP POST parameter.
network
low complexity
tms-outsource
6.5
6.5
2021-04-12 CVE-2021-24198 Unspecified vulnerability in Tms-Outsource Wpdatatables
The wpDataTables – Tables & Table Charts premium WordPress plugin before 3.4.2 has Improper Access Control.
network
low complexity
tms-outsource
8.1
8.1
2021-04-12 CVE-2021-24197 Unspecified vulnerability in Tms-Outsource Wpdatatables
The wpDataTables – Tables & Table Charts premium WordPress plugin before 3.4.2 has Improper Access Control.
network
low complexity
tms-outsource
8.1
8.1