WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blogging sites on PHP and MySQL servers. The vulnerability stems from the program not properly filtering and escaping the search_text parameter before it is used in SQL statements. An attacker could use this vulnerability to view, add, modify, or delete information in the back-end database.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress events made easy | lt | 2.2.36 |