WordPress DiveBook plugin <= 1.1.4 - Unauthenticated SQL Injection (SQLi) vulnerability
- Unauthenticated SQL Injection (SQLi) vulnerability found by Hooper Labs in WordPress DiveBook plugin (versions <= 1.1.4).
- 2020-12-09 - we were unable to find a patched version of this plugin (Last updated: 10 years ago).
Type SQL Injection
OWASP Top 10 A1: Injection
- Name CVE-2020-14207
Fixed In 1.5.5
- Disclosure date
- Hooper Labs