SQL injection vulnerability in ajax/mail_functions.php in the WP Symposium plugin prior to 14.11 for WordPress allows remote authenticated users to execute arbitrary SQL commands via the tray parameter in a getMailMessage action.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
wpsymposiumpro wp symposium |