Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
patchstackRyan DewhurstPATCHSTACK:226983FFDAA07EFA5A1A39EF5C3D3D2E
HistoryMar 16, 2015 - 12:00 a.m.

WordPress SEO by Yoast Plugin 1.7.3.3 - Blind SQL Injection

2015-03-1600:00:00
Ryan Dewhurst
patchstack.com
7

0.002 Low

EPSS

Percentile

61.4%

JSON

SEO by Yoast plugin is prone to a blind SQL injection vulnerability. This vulnerability is found “admin/class-bulk-editor-list-table.php”. Because of it, the orderby and order “get” parameters are not sufficiently sanitised before being used within a SQL query.

Solution

           Update the plugin.
CPENameOperatorVersion
yoast seole1.7.3.3

Related

prion 1
cve 1
checkpoint_advisories 1
cvelist 1
dsquare 1
nvd 1
wpvulndb 1
kaspersky 1
prion
prion
Sql injection
2015-03-17 15:59:00
cve
cve
CVE-2015-2292
2015-03-17 15:59:00
checkpoint_advisories
checkpoint_advisories
WordPress SEO by Yoast Plugin SQL Injection (CVE-2015-2292)
2015-02-12 00:00:00
cvelist
cvelist
CVE-2015-2292
2015-03-17 15:00:00
dsquare
dsquare
WordPress Yoast SEO 1.7.3.3 SQL Injection
2015-10-15 00:00:00
nvd
nvd
CVE-2015-2292
2015-03-17 15:59:00
wpvulndb
wpvulndb
Yoast SEO <= 1.7.3.3 - Blind SQL Injection
2015-03-11 00:00:00
kaspersky
kaspersky
KLA10481 Multiple vulnerabilities in WordPress SEO plugin
2015-03-17 00:00:00

0.002 Low

EPSS

Percentile

61.4%

JSON
Related for PATCHSTACK:226983FFDAA07EFA5A1A39EF5C3D3D2E
prion1cve1checkpoint_advisories1cvelist1dsquare1nvd1wpvulndb1kaspersky1