RSS   Vulnerabilities for 'Popup builder'   RSS

2019-08-06
 
CVE-2019-14695

CWE-89
 

 
A SQL injection vulnerability exists in the Sygnoos Popup Builder plugin before 3.45 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system via com/libs/Table.php because Subscribers Table ordering is mishandled.

 


Copyright 2019, cxsecurity.com

 

Back to Top