CVE-2005-2108

2005-07-05T04:00:00
ID CVE-2005-2108
Type cve
Reporter cve@mitre.org
Modified 2016-10-18T03:25:00

Description

SQL injection vulnerability in XMLRPC server in WordPress 1.5.1.2 and earlier allows remote attackers to execute arbitrary SQL commands via input that is not filtered in the HTTP_RAW_POST_DATA variable, which stores the data in an XML file.