RSS   Vulnerabilities for 'Quartz plugin'   RSS

2014-08-06
 
CVE-2014-5185

CWE-89
 

 
SQL injection vulnerability in the Quartz plugin 1.01.1 for WordPress allows remote authenticated users with Contributor privileges to execute arbitrary SQL commands via the quote parameter in an edit action in the quartz/quote_form.php page to wp-admin/edit.php.

 


Copyright 2024, cxsecurity.com

 

Back to Top