2 matches found
CVE-2017-1002021
CVE-2017-1002021 affects WordPress plugin Surveys (version 1.01.8). The issue is that in individual_responses.php the survey_id is not sanitized before being used in an SQL query, enabling SQL injection. Connected sources corroborate an SQL injection vulnerability; WPVulnDB describes it as an aut...
CVE-2017-1002021
Vulnerability in wordpress plugin surveys v1.01.8, The code in individualresponses.php does not sanitize the surveyid variable before placing it inside of an SQL query...