Full Disclosure

Blind SQL Injection in WP Symposium allows unauthenticated attackers to access sensitive data (WordPress plugin)

August 12, 2015 007admin

Posted by dxw Security on Aug 12

Details
================
Software: WP Symposium
Version: 15.1
Homepage: https://wordpress.org/plugins/wp-symposium
Advisory report:
https://security.dxw.com/advisories/blind-sql-injection-in-wp-symposium-allows-unauthenticated-attackers-to-access-sensitive-data/
CVE: Awaiting assignment
CVSS: 6.4 (Medium; AV:N/AC:L/Au:N/C:P/I:N/A:P)

Description
================
Blind SQL Injection in WP Symposium allows unauthenticated attackers to access…

Software and Security Information