Vulnerabilities > Huge IT > Huge IT Slider

DATE CVE VULNERABILITY TITLE RISK
2020-02-08 CVE-2015-2062 SQL Injection vulnerability in Huge-It Slider
Multiple SQL injection vulnerabilities in the Huge-IT Slider (slider-image) plugin before 2.7.0 for WordPress allow remote administrators to execute arbitrary SQL commands via the removeslide parameter in a popup_posts or edit_cat action in the sliders_huge_it_slider page to wp-admin/admin.php.
network
low complexity
huge-it microsoft CWE-89
6.5