Lucene search
MitreCVELIST:CVE-2013-1408HistoryMar 24, 2014 - 2:00 p.m.
CVE-2013-1408
2014-03-2414:00:00
mitre
raw.githubusercontent.com
1
Multiple SQL injection vulnerabilities in the Wysija Newsletters plugin before 2.2.1 for WordPress allow remote authenticated administrators to execute arbitrary SQL commands via the (1) search or (2) orderby parameter to wp-admin/admin.php. NOTE: this can be leveraged using CSRF to allow remote unauthenticated attackers to execute arbitrary SQL commands.
Related
cve
cve
CVE-2013-1408
2014-03-24 16:43:02
securityvulns
securityvulns
SQL Injection Vulnerability in Wysija Newsletters WordPress Plugin
2013-02-11 00:00:00
packetstorm
packetstorm
WordPress Wysija Newsletters 2.2 SQL Injection
2013-02-06 00:00:00
prion
prion
Sql injection
2014-03-24 16:43:00
seebug
seebug
Conceptronic C54APM默认管理验证凭据漏洞
2014-01-13 00:00:00
htbridge
htbridge
SQL Injection Vulnerability in Wysija Newsletters WordPress Plugin
2013-01-16 00:00:00
zdt
zdt
WordPress Wysija Newsletters 2.2 SQL Injection Vulnerability
2013-02-07 00:00:00