Critical severity9.8NVD Advisory· Published Sep 14, 2017· Updated Jun 17, 2026
CVE-2017-1002010
CVE-2017-1002010
Description
Vulnerability in wordpress plugin Membership Simplified v1.58, The code in membership-simplified-for-oap-members-only/updateDB.php is vulnerable to blind SQL injection because it doesn't sanitize user input via recordId in the delete_media function.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:ontraport:membership_simplified:1.58:*:*:*:*:wordpress:*:*+ 1 more
- cpe:2.3:a:ontraport:membership_simplified:1.58:*:*:*:*:wordpress:*:*
- (no CPE)range: unspecified
- Range: <=1.58
Patches
Vulnerability mechanics
References
2- www.vapidlabs.com/advisory.phpnvdExploitPatchThird Party Advisory
- membership.officeautopilot.com/get-it-now/nvdNot Applicable
News mentions
0No linked articles in our index yet.