54 matches found
AWP Classifieds Plugin < 4.3 - Unauthenticated SQLi
The plugin does not properly sanitise and escape some parameters before using them in a SQL statement via an AJAX action available to unauthenticated users and when a specific premium module is active, leading to a SQL injection PoC To read the userlogin and userpass columns from the wpusers tabl...
WordPress Another Classifieds Plugin <= 1.8.9.4 - Unspecified Image Upload
This plugin is prone to an unspecified vulnerability. Solution Upgrade the plugin...
CVE-2014-10013
CVE-2014-10013: SQL injection in the WordPress Another Classifieds Plugin (Another WordPress Classifieds Plugin) allowing remote attackers to execute arbitrary SQL via the keywordphrase parameter in a dosearch action. Affected: WordPress Classifieds Plugin (
CVE-2014-10012
The CVE describes a Cross-site Scripting (XSS) vulnerability in the WordPress plugin “Another WordPress Classifieds Plugin.” The issue is triggered by injecting script/HTML via the query string to the plugin’s default URI, indicating insufficient input sanitization in the affected component. Impa...
PT-2015-3656 · WordPress · Wordpress Classifieds Plugin
Name of the Vulnerable Software and Affected Versions: Another WordPress Classifieds Plugin affected versions not specified Description: The issue allows remote attackers to inject arbitrary web script or HTML via the query string to the default URI, which is a cross-site scripting XSS...
WordPress Another WordPress Classifieds Plugin - XSS
Because of this vulnerability, the attackers can inject arbitrary web script or HTML via the query string to the default URI. Solution Update the plugin...
PT-2015-3657 · WordPress · Wordpress Classifieds Plugin
Name of the Vulnerable Software and Affected Versions: Another WordPress Classifieds Plugin affected versions not specified Description: The issue allows remote attackers to execute arbitrary SQL commands via the keywordphrase parameter in a "dosearch" action. This enables attackers to manipulate...
Another WordPress Classifieds Plugin < 3.0 - SQLi & XSS
The WordPress Classifieds Plugin – Ad Directory & Listings by AWP Classifieds WordPress plugin was affected by a SQLi & XSS security vulnerability...
Another Wordpress Classifieds Plugin - SQL Injection Vulnerability
Another WordPress Classifieds plugin suffers from cross site scripting and remote SQL injection vulnerabilities. Exploit Title: Another Wordpress Classifieds Plugin sql injection and Cross Site Scripting Author: dill download:...
CVE-2012-4874
Unspecified vulnerability in the Another WordPress Classifieds Plugin before 2.0 for WordPress has unknown impact and attack vectors related to "image uploads."...
Sql injection
Unspecified vulnerability in the Another WordPress Classifieds Plugin before 2.0 for WordPress has unknown impact and attack vectors related to "image uploads."...
CVE-2012-4874
CVE-2012-4874 affects the WordPress plugin “Another WordPress Classifieds” (before version 2.0). Description indicates an unspecified vulnerability related to image uploads with unknown impact and attack vectors; CVSS v2 base score 10.0 (HIGH) per NVD. Connected sources corroborate vulnerable plu...
WordPress Another WordPress Classifieds Plugin <= 1.9 - Unspecified vulnerability
Because of this vulnerability, this plugin has unknown impact and attack vectors related to "image uploads." Solution Update the plugin...
WordPress Another WordPress Classifieds Plugin <= 1.9 - Unspecified vulnerability
Because of this vulnerability, this plugin has unknown impact and attack vectors related to "image uploads." Solution Update the plugin...