The Bulk Product Sync plugin for WordPress, up to version 8.6, has a security vulnerability known as SQL Injection. This means that the plugin does not properly handle certain types of user input, allowing attackers to add additional code to the existing code used to access the database. This could potentially compromise sensitive information stored in the database.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
