CVE-2015-2213

2015-11-09T06:59:00
ID CVE-2015-2213
Type cve
Reporter NVD
Modified 2017-11-03T21:29:02

Description

SQL injection vulnerability in the wp_untrash_post_comments function in wp-includes/post.php in WordPress before 4.2.4 allows remote attackers to execute arbitrary SQL commands via a comment that is mishandled after retrieval from the trash.