7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.4 High
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
80.1%
SQL injection vulnerability in the Export CSV page in the Participants Database plugin before 1.5.4.9 for WordPress allows remote attackers to execute arbitrary SQL commands via the query parameter in an “output CSV” action to pdb-signup/.
osvdb.org/show/osvdb/107626
packetstormsecurity.com/files/126878/WordPress-Participants-Database-1.5.4.8-SQL-Injection.html
seclists.org/fulldisclosure/2014/Jun/0
www.exploit-db.com/exploits/33613
www.securityfocus.com/bid/67769
wordpress.org/plugins/participants-database/changelog
www.yarubo.com/advisories/1