CVE-2017-1002010

Summary

Vulnerability in wordpress plugin Membership Simplified v1.58, The code in membership-simplified-for-oap-members-only/updateDB.php is vulnerable to blind SQL injection because it doesn't sanitize user input via recordId in the delete_media function.

Affected Software

VendorProductVersion RangeStatus
ontraportMembership Simplifiedunspecified < 1.58affected

Weaknesses

  • SQL Injection

ADP Enrichment

CVE Program Container

Additional References

References