Vulnerabilities

CVE-2015-5308

by Fred · 02/11/2015

Multiple SQL injection vulnerabilities in cs_admin_users.php in the wp-championship plugin 5.8 for WordPress allow remote attackers to execute arbitrary SQL commands via the (1) user, (2) isadmin, (3) mail service, (4) mailresceipt, (5) stellv, (6) champtipp, (7) tippgroup, or (8) userid parameter.

Date published : 2015-11-02

http://www.vapid.dhs.org/advisory.php?v=155

https://wpvulndb.com/vulnerabilities/8221

Similar

Tags: Cybersecurity Alert