Multiple SQL injection vulnerabilities in includes/update.php in the Support Ticket System plugin before 1.2.1 for WordPress allow remote attackers to execute arbitrary SQL commands via the (1) user or (2) id parameter.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2017-09-26T15:00:00

Updated: 2024-08-06T07:58:59.795Z

Reserved: 2015-10-01T00:00:00

Link: CVE-2015-7670

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2017-09-26T15:29:00.363

Modified: 2024-11-21T02:37:11.320

Link: CVE-2015-7670

cve-icon Redhat

No data.