eventr 1.02.2 - Blind SQL Injection

Affects Plugin

no known fix
- plugin closed

References

CVE 2017-1002018
CVE 2017-1002019
URL https://www.openwall.com/lists/oss-security/2017/05/30/3
URL http://www.vapidlabs.com/advisory.php?v=192

Classification

Type SQLI
OWASP Top 10 A1: Injection
CWE CWE-89

Miscellaneous

Submitter firefart
Submitter Website https://firefart.at/
Submitter Twitter _FireFart_
Views 6542
Verified No
WPVDB ID 8838

Timeline

Publicly Published 2017-05-31 (about 3 years ago)
Added 2017-05-31 (about 3 years ago)
Last Updated 2019-11-01 (8 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin