Описание
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WS Form WS Form LITE – Drag & Drop Contact Form Builder for WordPress.This issue affects WS Form LITE – Drag & Drop Contact Form Builder for WordPress: from n/a through 1.9.170.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.9.171 (исключая)
cpe:2.3:a:westguardsolutions:ws_form:*:*:*:*:lite:wordpress:*:*
EPSS
Процентиль: 52%
0.00291
Низкий
7.6 High
CVSS3
7.2 High
CVSS3
Дефекты
CWE-89
Связанные уязвимости
CVSS3: 7.6
github
около 2 лет назад
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WS Form WS Form LITE – Drag & Drop Contact Form Builder for WordPress.This issue affects WS Form LITE – Drag & Drop Contact Form Builder for WordPress: from n/a through 1.9.170.
EPSS
Процентиль: 52%
0.00291
Низкий
7.6 High
CVSS3
7.2 High
CVSS3
Дефекты
CWE-89