CVE-2018-11309
CVE-2018-11309 affects the WordPress MemberMouse plugin up to version 2.2.8 (and earlier). The vulnerability is a blind SQL injection in the coupon_code parameter triggered via the applyCoupon action in admin-ajax.php, allowing an unauthenticated attacker to dump the WordPress MySQL database. Con...