WordPress is the Wordpress Foundation’s set of blogging platform developed using the PHP language. The platform supports the erection of personal blog sites on PHP and MySQL servers. Quotes Collection Plugin is a WordPress open source application plugin. WordPress Quotes Collection Plugin has a SQL injection vulnerability that stems from the plugin’s failure to validate and escape The bulkcheck parameter lacks validation for external input SQL statements. An attacker could use the vulnerability to execute illegal SQL commands to steal sensitive database data.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress quotes collection plugin | le | 2.5.2 |