Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
patchstackELwauxPATCHSTACK:206BDAC6252174C176879E18499B1FE6
HistoryJun 30, 2009 - 12:00 a.m.

WordPress Related Sites Plugin 2.1 - Blind SQL Injection Vulnerability

2009-06-3000:00:00
eLwaux
patchstack.com
4

0.001 Low

EPSS

Percentile

28.0%

JSON

A critical blind SQL vulnerability has been discovered in the WordPress Plugin Related Sites plugin. User input is not being sanitized in BTE_RW_webajax.php file (line 27), therefore the attacker can inject SQL via POST.

Solution

           Update plugin.
CPENameOperatorVersion
related sitesle2.1

Related

cve 1
cvelist 1
wpvulndb 1
prion 1
nvd 1
cve
cve
CVE-2009-2383
2009-07-08 15:30:01
cvelist
cvelist
CVE-2009-2383
2009-07-08 15:00:00
wpvulndb
wpvulndb
Related Sites 2.1 - Blind SQL Injection
2014-08-01 00:00:00
prion
prion
Sql injection
2009-07-08 15:30:00
nvd
nvd
CVE-2009-2383
2009-07-08 15:30:01

0.001 Low

EPSS

Percentile

28.0%

JSON
Related for PATCHSTACK:206BDAC6252174C176879E18499B1FE6
cve1cvelist1wpvulndb1prion1nvd1