ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Wysija Newsletters Plugin - Multiple SQL Injection Vulnerabilities

Product
Wysija Newsletters
Description
This WordPress Wysija Newsletters plugin is prone to multiple SQL-injection vulnerabilities. An attacker can compromise the application or exploit latent vulnerabilities in the underlying database.
Solution
Update the plugin.
Classification
Type Multi
References
Exploit-DB
CVE
Name CVE- 2013-1408
Versions
Affected In <= 2.2
Fixed In 2.3
Disclosure date
2013-02-06
Credits
High-Tech Bridge SA