SQL injection vulnerability in the Export CSV page in the Participants Database plugin prior to 1.5.4.9 for WordPress allows remote malicious users to execute arbitrary SQL commands via the query parameter in an "output CSV" action to pdb-signup/.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
xnau participants database |
||
xnau participants database 1.5.4.7 |
||
xnau participants database 1.5.4.2 |
||
xnau participants database 1.5.4.4 |
||
xnau participants database 1.5.4.3 |
||
xnau participants database 1.5.4.5 |
||
xnau participants database 1.5.4 |
||
xnau participants database 1.5.4.6 |
||
xnau participants database 1.5.4.1 |