CyberSec.Space Logo
CVEブラウザに戻る

CVE-2017-1002027

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0480%
EPSS Percentile36.02th
Published2017年9月14日
Last Modified2026年5月13日

Vulnerability Description

Vulnerability in wordpress plugin rk-responsive-contact-form v1.0, The variable $delid isn't sanitized before being passed into an SQL query in file ./rk-responsive-contact-form/include/rk_user_list.php.

Affected Platforms (CPE)

📦
Rayanehdownload

Rk Responsive Contact Form

= 1.0

References & Advisories

🔗 http://www.vapidlabs.com/advisory.php?v=198
🔗 https://wordpress.org/plugins/rk-responsive-contact-form/
🔗 https://wpvulndb.com/vulnerabilities/8889
🔗 http://www.vapidlabs.com/advisory.php?v=198
🔗 https://wordpress.org/plugins/rk-responsive-contact-form/
🔗 https://wpvulndb.com/vulnerabilities/8889

関連する脆弱性情報

CVE-2014-72406.1

Cross-site scripting (XSS) vulnerability in the Easy Contact Form Solution plugin before 1.7 for WordPress allows remote attackers...

CVE-2021-245135.4

The Form Builder | Create Responsive Contact Forms WordPress plugin before 1.9.8.4 does not sanitise or escape its Form Title, all...

CVE-2017-514510.0

An issue was discovered in Carlo Gavazzi VMU-C EM prior to firmware Version A11_U05, and VMU-C PV prior to firmware Version A17. S...

CVE-2017-772210.0

In SolarWinds Log & Event Manager (LEM) before 6.3.1 Hotfix 4, a menu system is encountered when the SSH service is accessed with ...