Description
The "order_col" parameter in archive.php of SEO Panel 4.8.0 is vulnerable to time-based blind SQL injection, which leads to the ability to retrieve all databases.
Remediation
References
Related Vulnerabilities
AbanteCart Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2022-26521)
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-35152)
WordPress Plugin WP Mail Logging Security Bypass (1.9.9)
WordPress Plugin Britetechs Companion Malicious Code (2.2.7)
WordPress Plugin FV Flowplayer Video Player Cross-Site Scripting (7.5.18.727)