Lucene search
N/APATCHSTACK:A607E9D3A0CDD2EF66EEEEF13C7ABCD2HistoryOct 08, 2012 - 12:00 a.m.
WordPress Mingle Forum Plugin <= 1.0.32 - Multiple SQL Injection #2
2012-10-0800:00:00
N/A
patchstack.com
5
EPSS
0.001
Percentile
45.4%
Because of these vulnerabilities in fs-admin/fs-admin.php, the authenticated users can execute arbitrary SQL commands via the “usergroup” parameter in an add_user_togroup action or “add_forum_group_id” parameter in an add_forum_submit action.
Solution
Update the plugin.
Related
prion
prion
Sql injection
2012-10-08 20:55:00
cvelist
cvelist
CVE-2012-5327
2012-10-08 20:00:00
wpvulndb
wpvulndb
Mingle Forum <= 1.0.32.1 - Cross Site Scripting / SQL Injection
2014-08-01 10:58:48
nvd
nvd
CVE-2012-5327
2012-10-08 20:55:01
cve
cve
CVE-2012-5327
2012-10-08 20:55:01