PT-2019-13431 · Vsourz Digital · Vsourz Digital Advanced Cf7 Db Plugin

Vsourz1Td

·

Publicado

2019-07-29

·

Atualizado

2023-02-06

·

CVE-2019-13571

CVSS v3.1

9.8

Crítica

VetorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Vsourz Digital Advanced CF7 DB plugin versions prior to 1.6.2
Description A SQL injection issue exists, allowing a remote attacker to execute arbitrary SQL commands on the affected system.
Recommendations For Vsourz Digital Advanced CF7 DB plugin versions prior to 1.6.2, update to version 1.6.2 or later to resolve the issue.

Exploit

Correção

SQL injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-89

Identificadores relacionados

CVE-2019-13571

Produtos afetados

Vsourz Digital Advanced Cf7 Db Plugin