Vulnerabilities and security researches forjiangqie-official-website-mini-program jiangqie-official-website-mini-program

Jun 06, 2024

CVE, Research URL: CVE-2021-24303
Home page URL: Security reports for JiangQie Official Website Mini Program
Application: JiangQie Official Website Mini Program
Date: Sep 06, 2021
Research Description: The JiangQie Official Website Mini Program WordPress plugin before 1.1.1 does not escape or validate the id GET parameter before using it in SQL statements, leading to SQL injection issues
Affected versions: max 1.1.1.
Status: vulnerable

Mar 26, 2025

CVE, Research URL: CVE-2025-30604
Home page URL: Security reports for JiangQie Official Website Mini Program
Application: JiangQie Official Website Mini Program
Date: Mar 24, 2025
Research Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in jiangqie JiangQie Official Website Mini Program allows Blind SQL Injection. This issue affects JiangQie Official Website Mini Program: from n/a through 1.8.2.
Affected versions: max 1.8.2.
Status: vulnerable