CVE-2015-9452

Publication date

2019-10-07 14:19:48

Family

mitre

State

PUBLISHED

Description

The nex-forms-express-wp-form-builder plugin before 4.6.1 for WordPress has SQL injection via the wp-admin/admin.php?page=nex-forms-main nex_forms_Id parameter.