Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
patchstackN/APATCHSTACK:EF07C0FC9DA7C1ECF98BD274420DC9CF
HistoryNov 30, 2011 - 12:00 a.m.

WordPress WP-PostRatings plugin <= 1.61 - SQL Injecion (SQLi) vulnerability

2011-11-3000:00:00
N/A
patchstack.com
9

0.002 Low

EPSS

Percentile

60.8%

JSON

Because of this vulnerability in wp-postratings.php, the authenticated users can execute arbitrary SQL commands via the id attribute of the rating shortcode when creating a post.

Solution

           Update the plugin to the latest available version (at least 1.62).
CPENameOperatorVersion
wp-postratingsle1.61

Related

cve 1
wpvulndb 1
prion 1
nvd 1
cvelist 1
cve
cve
CVE-2011-4646
2022-10-03 16:15:13
wpvulndb
wpvulndb
WP Postratings < 1.62 - Authenticated SQL Injection
2011-10-06 00:00:00
prion
prion
Sql injection
2011-11-30 19:55:00
nvd
nvd
CVE-2011-4646
2011-11-30 19:55:00
cvelist
cvelist
CVE-2011-4646
2022-10-03 16:15:13

0.002 Low

EPSS

Percentile

60.8%

JSON
Related for PATCHSTACK:EF07C0FC9DA7C1ECF98BD274420DC9CF
cve1wpvulndb1prion1nvd1cvelist1