CVE-2013-7187

Currently unrated

Key Information:

Vendor: Wordpress
Status: Formcraft
Vendor: CVE Published:; 20 December 2013

Summary

SQL injection vulnerability in form.php in the FormCraft plugin 1.3.7 and earlier for WordPress allows remote attackers to execute arbitrary SQL commands via the id parameter.

References

http://packetstormsecurity.com/files/124343/wpformcraft-s...

x_refsource_MISC

https://exchange.xforce.ibmcloud.com/vulnerabilities/89581

vdb-entryx_refsource_XF

http://www.exploit-db.com/exploits/30002

exploitx_refsource_EXPLOIT-DB

Timeline

Vulnerability published
Dec 20, 2013
Vulnerability Reserved
Dec 20, 2013