CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Usersultra: >> Usersultra Security Vulnerabilities

CVE-2015-4109

Multiple SQL injection vulnerabilities in the ratings module in the Users Ultra plugin before 1.5.16 for WordPress allow remote attackers to execute arbitrary SQL commands via the (1) data_target or (2) data_vote parameter in a rating_vote (wp_ajax_nopriv_rating_vote) action to wp-admin/admin-ajax.php.

CVSS Score

7.5

EPSS Score

0.009

Published

2015-06-09

Page 1

Vulnerabilities

Vulnerable Software

Usersultra: >> Usersultra Security Vulnerabilities

Products

Pricing

Contact Us