Описание
SQL injection vulnerability in the Quartz plugin 1.01.1 for WordPress allows remote authenticated users with Contributor privileges to execute arbitrary SQL commands via the quote parameter in an edit action in the quartz/quote_form.php page to wp-admin/edit.php.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:quartz_plugin_project:quartz_plugin:1.01.1:*:*:*:*:wordpress:*:*
EPSS
Процентиль: 89%
0.04993
Низкий
6 Medium
CVSS2
Дефекты
CWE-89
Связанные уязвимости
github
больше 3 лет назад
SQL injection vulnerability in the Quartz plugin 1.01.1 for WordPress allows remote authenticated users with Contributor privileges to execute arbitrary SQL commands via the quote parameter in an edit action in the quartz/quote_form.php page to wp-admin/edit.php.
EPSS
Процентиль: 89%
0.04993
Низкий
6 Medium
CVSS2
Дефекты
CWE-89