SQL Injection Vulnerability in Mail Masta Plugin 1.0 for WordPress

CVE-2017-6574 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

A SQL injection issue is exploitable, with WordPress admin access, in the Mail Masta (aka mail-masta) plugin 1.0 for WordPress. This affects ./inc/lists/edit_member.php with the GET Parameter: filter_list.

Learn more about our Wordpress Pen Testing.