Wordpress options-reading.php page_options Variable SQL Injection

2007-07-31T00:00:00
ID OSVDB:39373
Type osvdb
Reporter OSVDB
Modified 2007-07-31T00:00:00

Description

Vulnerability Description

Wordpress contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'options-reading.php' script not properly sanitizing user-supplied input to the 'page_options' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.

References:

Vendor Specific News/Changelog Entry: http://trac.wordpress.org/ticket/4690 Other Advisory URL: http://mybeni.rootzilla.de/mybeNi/2007/wordpress_zeroday_vulnerability_roundhouse_kick_and_why_i_nearly_wrote_the_first_blog_worm/ ISS X-Force ID: 35719 CVE-2007-4154