9 matches found
EUVD-2017-6255
Malware in sbrugna...
WordPress Event Espresso Lite Plugin SQL Injection Vulnerability
WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL. A SQL injection vulnerability exists in the WordPress Event Espresso Lite plugin. An attacker can exploit the vulnerability t...
CVE-2017-14760
SQL Injection exists in /includes/event-management/index.php in the event-espresso-free aka Event Espresso Lite plugin v3.1.37.12.L for WordPress via the recurrenceid parameter to /wp-admin/admin.php...
Sql injection
SQL Injection exists in /includes/event-management/index.php in the event-espresso-free aka Event Espresso Lite plugin v3.1.37.12.L for WordPress via the recurrenceid parameter to /wp-admin/admin.php...
CVE-2017-14760
SQL Injection exists in /includes/event-management/index.php in the event-espresso-free aka Event Espresso Lite plugin v3.1.37.12.L for WordPress via the recurrenceid parameter to /wp-admin/admin.php...
CVE-2017-14760
The CVE-2017-14760 entry corresponds to an SQL Injection in the WordPress plugin Event Espresso Lite (event-espresso-free) , version 3.1.37.12.L, exploitable via the recurrence_id parameter to /wp-admin/admin.php in the file path includes/event-management/index.php . The connected documents confi...
CVE-2017-14760
SQL Injection exists in /includes/event-management/index.php in the event-espresso-free aka Event Espresso Lite plugin v3.1.37.12.L for WordPress via the recurrenceid parameter to /wp-admin/admin.php...
WordPress Event Espresso Lite plugin <=3.1.37.11.L - Blind SQL Injection vulnerability
Blind SQL Injection vulnerability found by Larry W. Cashdollar in the WordPress Event Espresso Lite – Event Management and Registration System plugin version 3.1.37.11.L and earlier versions. The function editeventcategory does not sanitize user-supplied input via the $id parameter before passing...
Event Espresso Lite <= 3.1.37.11.L - Authenticates Blind SQL Injection
The Event Espresso Lite - Event Management and Registration System WordPress plugin was affected by an Authenticates Blind SQL Injection security vulnerability...