ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Q and A Focus Plus FAQ Plugin 1.3.9.7 - Multiple Vulnerabilities

Product
Q and A Focus Plus FAQ
Description
Q and A Focus Plus FAQ plugin is prone to full path disclosure and SQL injection vulnerabilities.
Solution
Upgrade the plugin.
Classification
Type SQL Injection
OWASP Top 10 A1: Injection
References
Exploit-DB
CVE
Name CVE-N/A
Versions
Affected In <= 1.3.9.7
Fixed In 1.3.9.8
Disclosure date
2016-05-12
Credits
Gwendal Le Coguic