2 matches found
CVE-2017-1002018
Vulnerability in wordpress plugin eventr v1.02.2, The edit.php form and attendees.php code do not sanitize input, this allows for blind SQL injection via the event parameter...
CVE-2017-1002018
The CVE refers to a vulnerability in the WordPress plugin Eventr (version 1.02.2) where the edit.php and attendees.php input is not sanitized, allowing a blind SQL injection via the event parameter. Affected software: Eventr WordPress plugin. Root cause: unsanitized input leading to SQL injection...