← back
CVE-2017-6098

CVE-2017-6098

EPSS 5.2%
A SQL injection issue was discovered in the Mail Masta (aka mail-masta) plugin 1.0 for WordPress. This affects /inc/campaign_save.php (Requires authentication to Wordpress admin) with the POST Parameter: list_id.
Affected products
n/a · n/a
public PoCs found2
cve_referencewww.exploit-db.com/exploits/41438/unverifiedexploitdbwww.exploit-db.com/exploits/41438unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/hamkovic/Mail-Masta-Wordpress-Pluginhttps://wpvulndb.com/vulnerabilities/8740https://www.exploit-db.com/exploits/41438/