CVE-2021-24750 | WP Visitor Statistics Plugin up to 4.7 on WordPress AJAX Action refDetails refUrl sql injection (ID 2622268 / EDB-50619)
A vulnerability classified as critical has been found in WP Visitor Statistics Plugin up to 4.7 on WordPress. This affects the function refDetails of the component AJAX Action Handler. Performing a manipulation of the argument refUrl results in sql injection.
This vulnerability is reported as CVE-2021-24750. The attack is possible to be carried out remotely. Moreover, an exploit is present.
It is recommended to upgrade the affected component.