Wordpress plugin Simple Ads Manager SQL Injection through object serialisation
Description
Simple Ads Manager can interpret data as a serialised object, opening access to a SQL injection through a vulnerable parameter.
Default
configuration
Profiles
High
Medium
Low
Internet
Action
Block
Block
Block
Block
Alarm Level
Major
Major
Minor
Minor
References
URL:
http://appcheck-ng.com/remote-command-execution-in-wordpress-form-manager-plugin-cve-2015-7806/
Available since
ASQ v5.0.0
Protects
Wordpress Multiple Third Party Plugins Multiple Vulnerabilities
100 last CVE
Risk level
Moderate
