3 matches found
CVE-2015-4109
The CVE-2015-4109 entry relates to the WordPress plugin Users Ultra (Ratings module) where SQL injection is possible via the rating_vote AJAX action. Affected versions are prior to 1.5.16, with the vulnerability triggered by unsafely filtered data_target and data_vote parameters sent to wp-admin/...
CVE-2015-4109 - WordPress Users Ultra Plugin [SQL injection]
Exploit Title: CVE-2015-4109 - WordPress Users Ultra Plugin SQL injection Date: 2015/05/30 Exploit Author: Panagiotis Vagenas Contact: https://twitter.com/panVagenas Vendor Homepage: http://usersultra.com Software Link: https://wordpress.org/plugins/users-ultra/ Version: 1.5.15 Tested on: WordPre...
WordPress Users Ultra 1.5.15 SQL Injection
Exploit Title: CVE-2015-4109 - WordPress Users Ultra Plugin SQL injection Date: 2015/05/30 Exploit Author: Panagiotis Vagenas Contact: https://twitter.com/panVagenas Vendor Homepage: http://usersultra.com Software Link: https://wordpress.org/plugins/users-ultra/ Version: 1.5.15 Tested on: WordPre...