Critical severity9.8NVD Advisory· Published Aug 29, 2017· Updated Jun 17, 2026
CVE-2015-7517
CVE-2015-7517
Description
Multiple SQL injection vulnerabilities in the Double Opt-In for Download plugin before 2.0.9 for WordPress allow remote attackers to execute arbitrary SQL commands via the ver parameter to (1) class-doifd-download.php or (2) class-doifd-landing-page.php in public/includes/.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3<2.0.9+ 1 more
- (no CPE)range: <2.0.9
- (no CPE)range: <2.0.9
- cpe:2.3:a:labwebdesigns:double_opt-in_for_download:*:*:*:*:*:wordpress:*:*Range: <=2.0.8
Patches
Vulnerability mechanics
References
4- permalink.gmane.org/gmane.comp.security.oss.general/18255nvdThird Party Advisory
- www.securityfocus.com/bid/78220nvdThird Party AdvisoryVDB Entry
- www.vapidlabs.com/advisory.phpnvdThird Party AdvisoryVDB Entry
- wpvulndb.com/vulnerabilities/8345nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.