Vulnerability in wordpress plugin Event Expresso Free v3.1.37.11.L. User input not sanitized in edit_event_category functio
Reporter | Title | Published | Views | Family All 4 |
---|---|---|---|---|
![]() | Code injection | 14 Sep 201713:29 | – | prion |
![]() | CVE-2017-1002026 | 14 Sep 201713:29 | – | nvd |
![]() | CVE-2017-1002026 | 14 Sep 201713:29 | – | cve |
![]() | Event Espresso Lite <= 3.1.37.11.L - Authenticates Blind SQL Injection | 4 Jul 201700:00 | – | wpvulndb |
[
{
"product": "Event Expresso Free",
"vendor": "Event Espresso",
"versions": [
{
"lessThan": "3.1.37.11.L",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]
Source | Link |
---|---|
vapidlabs | www.vapidlabs.com/advisory.php |
wordpress | www.wordpress.org/plugins/event-espresso-free/ |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo