SQL injection vulnerability in WordPress Community Events plugin before 1.4.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/131530/WordPress-Community-Events-1.3.5-SQL-Injection.html | Exploit Third Party Advisory VDB Entry |
http://www.openwall.com/lists/oss-security/2015/04/16/10 | Mailing List |
http://www.openwall.com/lists/oss-security/2015/05/08/3 | Mailing List |
http://www.securityfocus.com/bid/74234 | Third Party Advisory VDB Entry |
https://wordpress.org/plugins/community-events/#developers | Third Party Advisory |
https://www.exploit-db.com/exploits/36805/ | Third Party Advisory VDB Entry |
Configurations
History
No history.
Information
Published : 2017-09-07 20:29
Updated : 2024-02-28 16:04
NVD link : CVE-2015-3313
Mitre link : CVE-2015-3313
CVE.ORG link : CVE-2015-3313
JSON object : View
Products Affected
community_events_project
- community_events
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')