Arbitrary SQL Command Execution Vulnerability in WP-OliveCart and WP-OliveCartPro

Arbitrary SQL Command Execution Vulnerability in WP-OliveCart and WP-OliveCartPro

CVE-2016-4905 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in the WP-OliveCart versions prior to 3.1.3 and WP-OliveCartPro versions prior to 3.1.8 allows attackers with administrator rights to execute arbitrary SQL commands via unspecified vectors.

Learn more about our Web Application Penetration Testing UK.