WordPress Plugin Vulnerabilities
WP-EMail <= 2.67.1 - SQL Injection
Description
If the Plugin is activated then the email submission form can be found on the /email/ directory on individual Post/Pages.
For example:
http://example.com/2017/05/31/hello-world/email/
Affects Plugins
References
Classification
Type
SQLI
OWASP top 10
CWE
Miscellaneous
Submitter
ethicalhack3r
Submitter twitter
Verified
No
WPVDB ID
Timeline
Publicly Published
2016-05-14 (about 7 years ago)
Added
2016-11-14 (about 7 years ago)
Last Updated
2019-11-01 (about 4 years ago)