cleantalk
Vulnerabilities and Security Researches

wpDataTables – WordPress Data Table, Dynamic Tables & Table Charts Plugin, CVE-2021-26754

CVE, Research URL

CVE-2021-26754

Home page URL

Security reports for wpDataTables – WordPress Data Table, Dynamic Tables & Table Charts Plugin

Application

wpDataTables – WordPress Data Table, Dynamic Tables & Table Charts Plugin

Published on
Feb 08, 2021
Research Description
wpDataTables before 3.4.1 mishandles order direction for server-side tables, aka admin-ajax.php?action=get_wdtable order[0][dir] SQL injection.
Affected versions
max 3.4.1.
Status
vulnerable
Previous vulnerability researches
wpDataTables – WordPress Data Table, Dynamic Tables & Table Charts Plugin (CVE-2022-25618) , Jun 07, 2024
wpDataTables – WordPress Data Table, Dynamic Tables & Table Charts Plugin (CVE-2022-29432) , Jun 07, 2024
wpDataTables – WordPress Data Table, Dynamic Tables & Table Charts Plugin (CVE-2019-6012) , Jun 07, 2024
wpDataTables – WordPress Data Table, Dynamic Tables & Table Charts Plugin (CVE-2014-9175) , Jun 07, 2024
wpDataTables – WordPress Data Table, Dynamic Tables & Table Charts Plugin (CVE-2021-24200) , Jun 07, 2024
New vulnerability
Calendar Event Multi View (CVE-2026-25465) , Mar 29, 2026
SMS Alert Order Notifications – WooCommerce (CVE-2026-32373) , Mar 29, 2026
Fraud Prevention For Woocommerce (CVE-2026-25443) , Mar 29, 2026
Podlove Podcast Publisher (CVE-2026-32448) , Mar 29, 2026
Booking for Appointments and Events Calendar – Amelia (CVE-2026-24963) , Mar 29, 2026