CVE-2005-2108

2005-07-05T00:00:00
ID CVE-2005-2108
Type cve
Reporter NVD
Modified 2016-10-17T23:25:03

Description

SQL injection vulnerability in XMLRPC server in WordPress 1.5.1.2 and earlier allows remote attackers to execute arbitrary SQL commands via input that is not filtered in the HTTP_RAW_POST_DATA variable, which stores the data in an XML file.