SQL Injection Vulnerability in Event List Plugin for WordPress
CVE-2017-9429
8.8HIGH
What is CVE-2017-9429?
The Event List plugin version 0.7.8 for WordPress contains a SQL injection vulnerability that allows authenticated users to execute arbitrary SQL commands through the 'id' parameter in the admin interface. This exploitation can potentially lead to unauthorized access and manipulation of the database, compromising data integrity and application security.