CVE: CVE-2017-1002009

Descrizione: Vulnerability in wordpress plugin Membership Simplified v1.58, The code in membership-simplified-for-oap-members-only/updateDB.php is vulnerable to blind SQL injection because it doesn’t sanitize user input via recordId in the delete function.

Vettore di attacco

Riferimenti esterni

• http://www.vapidlabs.com/advisory.php?v=188
• http://membership.officeautopilot.com/get-it-now/

Prodotti interessati

• n/a – n/a

Relazioni con altri prodotti

Nessun prodotto trovato per il CVE: cve-2017-1002009