Lucene search
Cate4cafePATCHSTACK:A1011816C0F94208F05773484C3EE3EBHistoryMay 30, 2018 - 12:00 a.m.
WordPress wpForo Forum plugin <=1.4.9 - Unauthenticated SQL Injection (SQLi) vulnerability
2018-05-3000:00:00
cate4cafe
patchstack.com
8
0.003 Low
EPSS
Percentile
71.9%
Unauthenticated SQL Injection via a search with the /forum/ wpfo parameter found by cate4cafe in WordPress wpForo Forum plugin (versions <=1.4.9).
Solution
Update the WordPress wpForo Forum plugin to the latest available version (at least 1.4.11).
| CPE | Name | Operator | Version |
|---|---|---|---|
| wpforo forum | le | 1.4.9 |
References
Related
cve
cve
CVE-2018-11515
2018-05-28 14:29:00
cvelist
cvelist
CVE-2018-11515
2018-05-28 14:00:00
nvd
nvd
CVE-2018-11515
2018-05-28 14:29:00
prion
prion
Sql injection
2018-05-28 14:29:00
wpexploit
wpexploit
wpForo Forum <= 1.4.9 - Unauthenticated SQL Injection
2018-05-27 00:00:00
wpvulndb
wpvulndb
wpForo Forum <= 1.4.9 - Unauthenticated SQL Injection
2018-05-27 00:00:00
patchstack
patchstack