CVE-2017-14766

The Simple Student Result plugin before 1.6.4 for WordPress has an Authentication Bypass vulnerability because the fn_ssr_add_st_submit() function and fn_ssr_del_st_submit() function in functions.php only require knowing the student id number.
References
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:saadamin:simple_student_result:*:*:*:*:*:wordpress:*:*

Information

Published : 2017-09-27 01:29

Updated : 2017-10-10 05:10


NVD link : CVE-2017-14766

Mitre link : CVE-2017-14766


JSON object : View

CWE
CWE-287

Improper Authentication

Advertisement

dedicated server usa

Products Affected

saadamin

  • simple_student_result