Accesspressthemes: >> Ultimate-Form-Builder-Lite >> 1.0.4 Security Vulnerabilities
The ultimate-form-builder-lite plugin before 1.3.7 for WordPress has SQL Injection, with resultant PHP Object Injection, via wp-admin/admin-ajax.php.
CVSS Score
9.8
EPSS Score
0.021
Published
2017-10-26