CVE-2020-6009
Description
LearnDash Wordpress plugin version below 3.1.6 is vulnerable to Unauthenticated SQL Injection.
CWE
- CWE-89 — CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Affected
- n/a / LearnDash Wordpress Plugin — v=< 3.1.6 [affected]
CVSS
- (none)
References
- https://learndash.releasenotes.io/release/YBfaq-version-316 x_refsource_MISC
Source
cvelistV5-main/cves/2020/6xxx/CVE-2020-6009.json