CVE-2017-1002027

Name of the Vulnerable Software and Affected Versions rk-responsive-contact-form version 1.0

Description The issue concerns a lack of sanitization for the $delid variable before it is used in an SQL query, located in the file ./rk-responsive-contact-form/include/rk user list.php. This could potentially lead to SQL injection attacks.

Recommendations For version 1.0, ensure proper sanitization of the $delid variable before passing it to SQL queries to prevent potential SQL injection attacks. As a temporary workaround, consider restricting access to the vulnerable file rk user list.php until a patch is available.