{"uuid": "d0b0b94b-8312-4a10-9aa0-7b5ae2f309c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-24143", "type": "seen", "source": "https://t.me/cibsecurity/25112", "content": "\u203c CVE-2021-24143 \u203c\n\nUnvalidated input in the AccessPress Social Icons plugin, versions before 1.8.1, did not sanitise its widget attribute, allowing accounts with post permission, such as author, to perform SQL injections.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-03-18T17:32:35.000000Z"}