Email Subscribers & Newsletters < 4.3.1 - Blind SQL Injection

Affects Plugin

fixed in version 4.3.1

References

URL https://www.wordfence.com/blog/2019/11/multiple-vulnerabilities-patched-in-email-subscribers-newsletters-plugin/

Classification

Type SQLI
OWASP Top 10 A1: Injection
CWE CWE-89

Miscellaneous

Views 2623
Verified No
WPVDB ID 9947

Timeline

Publicly Published 2019-11-13 (about 1 month ago)
Added 2019-11-13 (about 1 month ago)
Last Updated 2019-11-28 (16 days ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin