cleantalk
Vulnerabilities and Security Researches

Easy Modal, CVE-2017-12947

CVE, Research URL

CVE-2017-12947

Home page URL

Security reports for Easy Modal

Application

Easy Modal

Published on
Aug 18, 2017
Research Description
classes\controller\admin\modals.php in the Easy Modal plugin before 2.1.0 for WordPress has SQL injection in an untrash action with the id, ids, or modal parameter to wp-admin/admin.php, exploitable by administrators.
Affected versions
max 2.1.0.
Status
vulnerable
Previous vulnerability researches
Easy Modal (CVE-2026-24617) , Jan 27, 2026
Easy Modal (CVE-2017-12947) , Jun 07, 2024
Easy Modal (CVE-2017-12946) , Jun 07, 2024
New vulnerability
User Registration Using Contact Form 7 (CVE-2025-12825) , Jan 28, 2026
WANotifier – Send Message Notifications Using Cloud API (CVE-2025-68020) , Jan 28, 2026
Syntax Highlighter Compress (CVE-2025-68859) , Jan 28, 2026
Media Library File Size (CVE-2026-24569) , Jan 28, 2026
Academy LMS – eLearning and online course solution for WordPress (CVE-2025-15521) , Jan 28, 2026