CVE-2011-4669

CVE-2011-4669

EPSS 2.3%

SQL injection vulnerability in wp-users.php in WordPress Users plugin 1.3 and possibly earlier for WordPress allows remote attackers to execute arbitrary SQL commands via the uid parameter to index.php.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://plugins.trac.wordpress.org/changeset/448261/wordpress-users http://secunia.com/advisories/46442 https://exchange.xforce.ibmcloud.com/vulnerabilities/70683 http://wordpress.org/extend/plugins/wordpress-users/http://www.securityfocus.com/bid/50174