CVE-2012-6625

Publication date

2014-01-16 21:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in fs-admin/fs-admin.php in the ForumPress WP Forum Server plugin before 1.7.4 for WordPress allows remote attackers to execute arbitrary SQL commands via the groupid parameter in an editgroup action.