Security Advisory

CVE-2017-1002010

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-09-14 13:00:00

Last updated 2024-09-16 23:36:54

Assigner larry_cashdollar

State PUBLISHED

Description

Vulnerability in wordpress plugin Membership Simplified v1.58, The code in membership-simplified-for-oap-members-only/updateDB.php is vulnerable to blind SQL injection because it doesnt sanitize user input via recordId in the delete_media function.

← Browse all CVEs View on cve.org ↗