Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) in Icegram Email Subscribers & Newsletters Plugin for WordPress v4.4.8 allows a remote, authenticated attacker to determine the value of database fields.
CPE | Name | Operator | Version |
---|---|---|---|
email_subscribers_\\&_newsletters | eq | 4.4.8 |