ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Rencontre – Dating Site plugin <= 3.1.2 - SQL Injection (SQLi) and Cross-Site Scripting (XSS) vulnerabilities

Product
Rencontre
Description
SQL Injection (SQLi) and Cross-Site Scripting (XSS) vulnerabilities found by Admavidhya N in WordPress Rencontre – Dating Site plugin (versions <= 3.1.2).
Solution
10 July 2019 - waiting for approval.
Classification
Type Multi
References
CVE
Name CVE-2019-13413, 2019-13414
Versions
Affected In <= 3.1.2
Disclosure date
2019-07-10
Credits
Admavidhya N
Submitter
ThreatPress