PT-2019-7354 · WordPress · Users-Ultra

Panagiotis Vagenas

Published

2019-09-20

Updated

2019-09-20

CVE-2015-9395

CVSS v2.0

6.5

Medium

Vector

AV:N/AC:L/Au:S/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions users-ultra plugin versions prior to 1.5.64

Description The issue is related to SQL Injection via an ajax action in the users-ultra plugin for WordPress.

Recommendations For versions prior to 1.5.64, update to version 1.5.64 or later to resolve the issue.

Fix

SQL injection

Found an issue in the description? Have something to add? Feel free to write us 👾

CVE-2015-9395

Users-Ultra