CVE-2019-14695

A SQL injection vulnerability exists in the Sygnoos Popup Builder plugin before 3.45 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system via com/libs/Table.php because Subscribers Table ordering is...

PT-2019-13789 · Sygnoos · Sygnoos Popup Builder

Name of the Vulnerable Software and Affected Versions: Sygnoos Popup Builder plugin versions prior to 3.45 Description: A SQL injection issue exists due to the mishandling of Subscribers Table ordering in com/libs/Table.php, allowing a remote attacker to execute arbitrary SQL commands on the...