14 Mar 2018
CVE-2018-1000131 - CVE Vulnerability
Pradeep Makone wordpress Support Plus Responsive Ticket System version 9.0.2 and earlier contains a SQL Injection vulnerability in the function to get tickets, the parameter email in cookie was injected that can result in filter the parameter. This attack appear to be exploitable via web site, without login. This vulnerability appears to have been fixed in 9.0.3 and later. (CVSS:0.0) (Last Update:2018-03-14)
Vulnerability Details : Pradeep Makone wordpress Support Plus Responsive Ticket System version 9.0.2 and earlier contains a SQL Injection vulnerability in the function to get tickets, the parameter email in cookie was injected that can result in filter the parameter. This attack appear to be exploitable via web site, without login. This vulnerability appears to have been fixed in 9.0.3 and later. Publish Date : 2018-03-14 Last Update Date : 2018-03-14 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2018-1000131
- References For CVE-2018-1000131
| |||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2018-1000131There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |