Authenticated SQL Injection (SQLi) vulnerability discovered by Jan w Oleju in WordPress Futurio Extra plugin (versions <= 1.6.2). Possible chained Cross-Site Scripting (XSS) vulnerability.
Update the WordPress Futurio Extra plugin to the latest available version (at least 1.6.3).
CPE | Name | Operator | Version |
---|---|---|---|
futurio extra | le | 1.6.2 |