3 matches found
CVE-2014-5185
SQL injection vulnerability in the Quartz plugin 1.01.1 for WordPress allows remote authenticated users with Contributor privileges to execute arbitrary SQL commands via the quote parameter in an edit action in the quartz/quoteform.php page to wp-admin/edit.php...
CVE-2014-5185
SQL injection vulnerability in the Quartz plugin 1.01.1 for WordPress allows remote authenticated users with Contributor privileges to execute arbitrary SQL commands via the quote parameter in an edit action in the quartz/quoteform.php page to wp-admin/edit.php...
CVE-2014-5185
The CVE-2014-5185 entry concerns the Quartz plugin for WordPress (v1.01.1). A SQL injection vulnerability exists in the plugin’s quartz/quote_form.php, exploitable by remote authenticated users with Contributor privileges via the quote parameter during an edit action in wp-admin/edit.php. Affecte...