Full Disclosure

SQL Injection in Post Indexer allows super admins to read the contents of the database (WordPress plugin)

November 18, 2016 007admin Leave a comment

Posted by dxw Security on Nov 18

Details
================
Software: Post Indexer
Version: 3.0.6.1
Homepage: http://premium.wpmudev.org/project/post-indexer/
Advisory report:
https://security.dxw.com/advisories/sql-injection-in-post-indexer-allows-super-admins-to-read-the-contents-of-the-database/
CVE: Awaiting assignment
CVSS: 4 (Medium; AV:N/AC:L/Au:S/C:P/I:N/A:N)

Description
================
SQL Injection in Post Indexer allows super admins to read the contents of the…

Leave a Reply Cancel reply

You must be logged in to post a comment.

Software and Security Information