CVE-2008-4732

SQL injection vulnerability in ajaxcomments.php in the WP Comment Remix plugin before 1.4.4 for WordPress allows remote attackers to execute arbitrary SQL commands via the p parameter...

CVE-2008-4732

Summary of CVE-2008-4732 : The WP Comment Remix WordPress plugin is affected by an SQL injection in the file ajax_comments.php . The vulnerability allows remote attackers to execute arbitrary SQL commands through the p parameter. Affected version range is plugin versions before 1.4.4 . The issue ...

CVE-2008-4734

The CVE-2008-4734 entry describes a Cross-Site Request Forgery in the WordPress plugin WP Comment Remix (before 1.4.4). The vulnerability affects the wpcr_do_options_page function, where an attacker can trigger unauthorized administrator actions by crafting a request that sets the wpcr_hidden_for...

CVE-2008-4732

SQL injection vulnerability in ajaxcomments.php in the WP Comment Remix plugin before 1.4.4 for WordPress allows remote attackers to execute arbitrary SQL commands via the p parameter...

WordPress WP Comment Remix Plugin <= 1.4.3 - SQL Injection

Because of this vulnerability in ajaxcomments.php, the attackers can execute arbitrary SQL commands via the "p" parameter. Solution Update the plugin...

WordPress WP Comment Remix Plugin <= 1.4.3 - CSRF

Because of this vulnerability, the attackers can perform unauthorized actions as administrators via a request that sets the "wpcrhiddenforminput" parameter. Solution Update the plugin...