Easy Team Manager 1.3.2 - Authenticated Blind SQL Injection

Affects Plugin

no known fix
- plugin closed

References

CVE 2017-1002023
URL https://www.openwall.com/lists/oss-security/2017/05/30/28
URL http://www.vapidlabs.com/advisory.php?v=194

Classification

Type SQLI
OWASP Top 10 A1: Injection
CWE CWE-89

Miscellaneous

Submitter firefart
Submitter Website https://firefart.at/
Submitter Twitter _FireFart_
Views 6547
Verified No
WPVDB ID 8837

Timeline

Publicly Published 2017-05-31 (about 3 years ago)
Added 2017-05-31 (about 3 years ago)
Last Updated 2019-11-01 (8 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin