Security Advisory

CVE-2015-2062

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-02-08 17:08:14

Last updated 2024-08-06 05:02:43

Assigner mitre

State PUBLISHED

Description

Multiple SQL injection vulnerabilities in the Huge-IT Slider (slider-image) plugin before 2.7.0 for WordPress allow remote administrators to execute arbitrary SQL commands via the removeslide parameter in a popup_posts or edit_cat action in the sliders_huge_it_slider page to wp-admin/admin.php.

← Browse all CVEs View on cve.org ↗