SQL Injection Vulnerability in ForumPress WP Forum Server Plugin

SQL Injection Vulnerability in ForumPress WP Forum Server Plugin

CVE-2012-6625 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in fs-admin/fs-admin.php in the ForumPress WP Forum Server plugin before 1.7.4 for WordPress allows remote attackers to execute arbitrary SQL commands via the groupid parameter in an editgroup action.

Learn more about our Wordpress Pen Testing.