A SQL injection issue is exploitable, with WordPress admin access, in the Mail Masta (aka mail-masta) plugin 1.0 for WordPress. This affects ./inc/subscriber_list.php with the POST Parameter: list_id.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mail-masta project mail-masta 1.0 |