Lucene search

CVE-2018-11515

🗓️ 28 May 2018 14:00:29Reported by [email protected]Type

The wpForo plugin for WordPress is vulnerable to SQL Injection via a search with the /forum/ wpfo paramete

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
CVE	CVE-2018-11515	28 May 201814:29	–	cve
Patchstack	WordPress wpForo Forum plugin <= 1.4.9 - Unauthenticated SQL Injection (SQLi) vulnerability	20 Jun 201800:00	–	patchstack
Patchstack	WordPress wpForo Forum plugin <=1.4.9 - Unauthenticated SQL Injection (SQLi) vulnerability	30 May 201800:00	–	patchstack
WPVulnDB	wpForo Forum <= 1.4.9 - Unauthenticated SQL Injection	27 May 201800:00	–	wpvulndb
Cvelist	CVE-2018-11515	28 May 201814:00	–	cvelist
Prion	Sql injection	28 May 201814:29	–	prion
wpexploit	wpForo Forum <= 1.4.9 - Unauthenticated SQL Injection	27 May 201800:00	–	wpexploit

Nvd

Node

gvectors wpforoRange<1.4.5wordpress

Source	Link
wpvulndb	www.wpvulndb.com/vulnerabilities/9089
github	www.github.com/DediData/wpforo/issues/1

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

28 May 2018 14:29Current

9.9High risk

Vulners AI Score9.9

CVSS25

CVSS39.8

EPSS0.00554

CWE-89