NA

CVE-2015-9496

Published: 22/10/2019 Updated: 24/10/2019
CVSS v2 Base Score: 6.5 | Impact Score: 6.4 | Exploitability Score: 8
Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P

Vulnerability Summary

The freshmail-newsletter plugin prior to 1.6 for WordPress has shortcode.php SQL Injection via the 'FM_form id=' substring.

Vulnerability Trend

Affected Products

Vendor Product Versions
FreshmailFreshmail-newsletter-