CVE-2015-9448

CVE-2015-9448

EPSS 1.9%

The sendpress plugin before 1.2 for WordPress has SQL Injection via the wp-admin/admin.php?page=sp-queue listid parameter.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://cinu.pl/research/wp-plugins/mail_8a2f7613577ea8e613ec274aeec14527.html https://wordpress.org/plugins/sendpress/#developers https://wpvulndb.com/vulnerabilities/8324