CVE-2017-1002026
CVE-2017-1002026
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 1.7%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
14 Sep 2017Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Vulnerability in wordpress plugin Event Expresso Free v3.1.37.11.L, The function edit_event_category does not sanitize user-supplied input via the $id parameter before passing it into an SQL statement.
Affected products
Event Espresso · Event Expresso Free