RSS   Vulnerabilities for 'Easy modal'   RSS

2017-08-18
 
CVE-2017-12947

 

 
classes\controller\admin\modals.php in the Easy Modal plugin before 2.1.0 for WordPress has SQL injection in an untrash action with the id, ids, or modal parameter to wp-admin/admin.php, exploitable by administrators.

 
 
CVE-2017-12946

 

 
classes\controller\admin\modals.php in the Easy Modal plugin before 2.1.0 for WordPress has SQL injection in a delete action with the id, ids, or modal parameter to wp-admin/admin.php, exploitable by administrators.

 


Copyright 2024, cxsecurity.com

 

Back to Top