https://www.pluginvulnerabilities.com/2017/10/27/vulnerability-details-sql-injection-vulnerability-in-ultimate-form-builder-lite/

From time to time a vulnerability is fixed in a plugin without the discoverer putting out a report on the vulnerability and we will put out a post detailing the vulnerability so that we can provide our customers with more complete information on the vulnerability.

Recently Wordfence made an under-sourced claim that there was a zero-day vulnerability in the plugin Ultimate

Share This