The xtremelocator plugin 1.5 for WordPress has SQL injection via the id parameter.
References
Link | Resource |
---|---|
http://lenonleite.com.br/en/blog/2016/12/16/xtreme-locator-dealer-locator-plugin-wordpress-sql-injection/ | Exploit Third Party Advisory |
https://wordpress.org/plugins/xtremelocator/#developers | Product |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2019-09-13T11:47:37
Updated: 2019-09-13T11:47:37
Reserved: 2019-09-12T00:00:00
Link: CVE-2016-10939
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-09-13T12:15:10.767
Modified: 2019-09-13T18:54:28.517
Link: CVE-2016-10939
JSON object: View
Redhat Information
No data.
CWE