CVE-2017-12650

CVE-2017-12650

EPSS 1.8%

SQL Injection exists in the Loginizer plugin before 1.3.6 for WordPress via the X-Forwarded-For HTTP header.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://blog.wpscans.com/sql-injection-and-csrf-security-vulnerability-in-loginizer/https://sv.wordpress.org/plugins/loginizer/#developers https://wpvulndb.com/vulnerabilities/8883