Vulnerabilities > Video Embed BOX Project

DATE	CVE	VULNERABILITY TITLE	RISK
2021-06-07	CVE-2021-24337	SQL Injection vulnerability in Video-Embed-Box Project Video-Embed-Box 1.0 The id GET parameter of one of the Video Embed WordPress plugin through 1.0's page (available via forced browsing) is not sanitised, validated or escaped before being used in a SQL statement, allowing low privilege users, such as subscribers, to perform SQL injection. network low complexity video-embed-box-project CWE-89	6.5

Vulnerabilities > Video Embed BOX Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Video Embed BOX Project"}]}