Multiple SQL injection vulnerabilities in cdnvote-post.php in the cdnvote plugin prior to 0.4.2 for WordPress allow remote malicious users to execute arbitrary SQL commands via the (1) cdnvote_post_id or (2) cdnvote_point parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cdnvote project cdnvote |