Blind SQL Injection Vulnerability in Chop Slider 3 WordPress Plugin

Blind SQL Injection Vulnerability in Chop Slider 3 WordPress Plugin

CVE-2020-11530 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

A blind SQL injection vulnerability is present in Chop Slider 3, a WordPress plugin. The vulnerability is introduced in the id GET parameter supplied to get_script/index.php, and allows an attacker to execute arbitrary SQL queries in the context of the WP database user.

Learn more about our Wordpress Pen Testing.