Vulnerability feed

Vulnerability

CVE-2019-20361

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2019-20361
Description:: There was a flaw in the WordPress plugin, Email Subscribers & Newsletters before 4.3.1, that allowed SQL statements to be passed to the database in the hash parameter (a blind SQL injection vulnerability).
Last updated date:: 01/31/2023

Type:: exploit
Confidence:: HIGH
Date of publishing:: 07/27/2020
Reference url to background: https://www.wordfence.com/blog/2019/11/multiple-vulnerabilities-patched-in-email-subscribers-newsletters-plugin/

Type:: exploit
Confidence:: HIGH
Date of publishing:: 08/27/2021
Reference url to background: https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/wp_email_sub_news_sqli.rb

Type:: exploit
Confidence:: HIGH
Date of publishing:: 01/31/2023
Reference url to background: http://packetstormsecurity.com/files/158568/WordPress-Email-Subscribers-And-Newsletters-4.2.2-SQL-Injection.html

Vulnerability Feed Contributors About Blog

@inTheWild

©2024 |