CVE-2019-13575
The CVE-2019-13575 entry describes a SQL injection in the WordPress plugin Everest Forms (WPEverest) up to version 1.4.9 via includes/evf-entry-functions.php. The underlying issue is improper handling/sanitization of user input that allows remote attackers to execute arbitrary SQL commands, with ...