SQL Injection Vulnerability in DTracker v1.5 WordPress Plugin

SQL Injection Vulnerability in DTracker v1.5 WordPress Plugin

CVE-2017-1002005 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

Vulnerability in wordpress plugin DTracker v1.5, In file ./dtracker/delete.php user input isn't sanitized via the contact_id variable before adding it to the end of an SQL query.

Learn more about our Wordpress Pen Testing.