Lucene search
High-Tech Bridge SAPATCHSTACK:2712576DDEC94C81E6ED1EF8328A8F4BHistorySep 25, 2014 - 12:00 a.m.
WordPress All In One WP Security Plugin 3.8.2 - SQL Injection
2014-09-2500:00:00
High-Tech Bridge SA
patchstack.com
8
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
This WordPress All In One WP Security plugin is prone to an SQL injection. This vulnerability allows an attacker to modify data, compromise the access and application or exploit hidden vulnerabilities in the underlying database.
Solution
Update the plugin.
| CPE | Name | Operator | Version |
|---|---|---|---|
| all-in-one event calendar | le | 3.8.2 |
References
Related
packetstorm
packetstorm
All In One WP Security 3.8.2 SQL Injection
2014-09-25 00:00:00
prion
prion
Sql injection
2014-10-02 14:55:00
exploitpack
exploitpack
WordPress Plugin All In One WP Security 3.8.2 - SQL Injection
2014-09-25 00:00:00
wpvulndb
wpvulndb
All In One WP Security plugin 3.8.2 - 2xSQL Injections
2014-09-26 20:53:31
cve
cve
CVE-2014-6242
2014-10-02 14:55:00
seebug
seebug
Wordpress All In One WP Security Plugin 3.8.2 - SQL Injection
2014-09-29 00:00:00
zdt
zdt
WordPress All In One WP Security Plugin 3.8.2 SQL Injection Vulnerability
2014-09-25 00:00:00
securityvulns
securityvulns
Two SQL Injections in All In One WP Security WordPress plugin
2014-10-14 00:00:00
htbridge
htbridge
Two SQL Injections in All In One WP Security WordPress plugin
2014-09-03 00:00:00
exploitdb
exploitdb
WordPress Plugin All In One WP Security 3.8.2 - SQL Injection
2014-09-25 00:00:00
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
Related for PATCHSTACK:2712576DDEC94C81E6ED1EF8328A8F4B