CVE-2016-0769 in eShop Plugininfo

Summary

Multiple SQL injection vulnerabilities in eshop-orders.php in the eShop plugin 6.3.14 for WordPress allow (1) remote administrators to execute arbitrary SQL commands via the delid parameter or remote authenticated users to execute arbitrary SQL commands via the (2) view, (3) mark, or (4) change parameter.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

12/16/2015

Disclosure

01/23/2017

Moderation

VulDB entry created

Entries

VDB-95822 (1)

CPE

ready

CWE

CWE-89 (Confirmed)

CVSS

7.5

EPSS

0.02109

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-0769
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-0769
CVE Details	https://www.cvedetails.com/cve/CVE-2016-0769/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!