VYPR

Double Opt In For Download

by WordPress

CVEs (1)

  • CVE-2015-7517CriAug 29, 2017
    risk 0.64cvss 9.8epss 0.04

    Multiple SQL injection vulnerabilities in the Double Opt-In for Download plugin before 2.0.9 for WordPress allow remote attackers to execute arbitrary SQL commands via the ver parameter to (1) class-doifd-download.php or (2) class-doifd-landing-page.php in public/includes/.