CVE-2017-14842: SQL Injection
First published: Thu Sep 28 2017(Updated: )
Mojoomla SMSmaster Multipurpose SMS Gateway for WordPress allows SQL Injection via the id parameter.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dasinfomedia Smsmaster Multipurpose Sms Gateway |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2017-14842?
CVE-2017-14842 has a medium severity rating due to the potential for SQL injection vulnerabilities.
How do I fix CVE-2017-14842?
To fix CVE-2017-14842, you should update the Mojoomla SMSmaster plugin to the latest version provided by the vendor.
What impact does CVE-2017-14842 have on my website?
CVE-2017-14842 can allow attackers to execute arbitrary SQL queries, potentially compromising your database.
Which versions of SMSmaster are affected by CVE-2017-14842?
CVE-2017-14842 affects all versions of the Mojoomla SMSmaster Multipurpose SMS Gateway for WordPress prior to the patch release.
How can I detect if my site is vulnerable to CVE-2017-14842?
You can detect CVE-2017-14842 by testing the id parameter for SQL injection vulnerabilities using various scanning tools.
- collector/nvd-index
- vendor/dasinfomedia
- canonical/dasinfomedia smsmaster multipurpose sms gateway