The Event Monster WordPress plugin prior to 1.2.0 does not validate and escape some parameters before using them in SQL statements, which could lead to SQL Injection exploitable by high privilege users
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
awplife event monster |