mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-12 13:31:34 +02:00
0xMarcio
725 B
725 B
CVE-2013-7187
Description
SQL injection vulnerability in form.php in the FormCraft plugin 1.3.7 and earlier for WordPress allows remote attackers to execute arbitrary SQL commands via the id parameter.
POC
Reference
- http://packetstormsecurity.com/files/124343/wpformcraft-sql.txt
- http://www.exploit-db.com/exploits/30002