Lucene search
K

9 matches found

securityvulns
securityvulns
added 2014/05/04 12:0 a.m.169 views

SQL Injection in AdRotate

Advisory ID: HTB23201 Product: AdRotate Vendor: AJdG Solutions Vulnerable Versions: 3.9.4 and probably prior Tested Version: 3.9.4 Advisory Publication: January 30, 2014 without technical details Vendor Notification: January 30, 2014 Vendor Patch: January 31, 2014 Public Disclosure: February 20,...

7.5CVSS0.2AI score0.05412EPSS
Exploits7
OpenVAS
OpenVAS
added 2014/03/11 12:0 a.m.38 views

WordPress AdRotate Plugin 'clicktracker.php' SQL Injection Vulnerability

WordPress AdRotate Plugin is prone to an SQL injection SQLi vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.5CVSS7.3AI score0.05412EPSS
Exploits7References5
Check Point Advisories
Check Point Advisories
added 2014/03/04 12:0 a.m.9 views

WordPress Plugin AdRotate SQL Injection (CVE-2014-1854)

An SQL injection vulnerability has been reported in the AdRotate plugin for WordPress. Remote attacker can exploit this vulnerability to execute arbitrary SQL commands on the target...

7.5CVSS8.2AI score0.05412EPSS
Exploits7
CVE
CVE
added 2014/02/27 3:0 p.m.119 views

CVE-2014-1854

CVE-2014-1854 affects WordPress AdRotate plugins (library/clicktracker.php) where the track parameter is unsafely handled, enabling SQL injection and remote execution of arbitrary SQL. Exploitation was demonstrated against AdRotate 3.9.4 (and likely earlier) with a crafted HTTP GET request; High ...

7.5CVSS8.4AI score0.05412EPSS
Exploits7References7Affected Software1
exploitpack
exploitpack
added 2014/02/22 12:0 a.m.57 views

WordPress Plugin AdRotate 3.9.4 - clicktracker.ph?track SQL Injection

WordPress Plugin AdRotate 3.9.4 - clicktracker.ph?track SQL Injection Advisory ID: HTB23201 Product: AdRotate Vendor: AJdG Solutions Vulnerable Versions: 3.9.4 and probably prior Tested Version: 3.9.4 Advisory Publication: January 30, 2014 without technical details Vendor Notification: January 30...

7.5CVSS0.5AI score0.05412EPSS
Exploits7
Exploit DB
Exploit DB
added 2014/02/22 12:0 a.m.90 views

WordPress Plugin AdRotate 3.9.4 - 'clicktracker.ph?track' SQL Injection

Advisory ID: HTB23201 Product: AdRotate Vendor: AJdG Solutions Vulnerable Versions: 3.9.4 and probably prior Tested Version: 3.9.4 Advisory Publication: January 30, 2014 without technical details Vendor Notification: January 30, 2014 Vendor Patch: January 31, 2014 Public Disclosure: February 20,...

7.5CVSS6.4AI score0.05412EPSS
Exploits7
Packet Storm
Packet Storm
added 2014/02/21 12:0 a.m.70 views

AdRotate 3.9.4 SQL Injection

Advisory ID: HTB23201 Product: AdRotate Vendor: AJdG Solutions Vulnerable Versions: 3.9.4 and probably prior Tested Version: 3.9.4 Advisory Publication: January 30, 2014 without technical details Vendor Notification: January 30, 2014 Vendor Patch: January 31, 2014 Public Disclosure: February 20,...

7.5CVSS0.1AI score0.05412EPSS
Exploits7
0day.today
0day.today
added 2014/02/21 12:0 a.m.71 views

AdRotate 3.9.4 SQL Injection Vulnerability

AdRotate version 3.9.4 suffers from a remote SQL injection vulnerability. Vendor: AJdG Solutions Vulnerable Versions: 3.9.4 and probably prior Tested Version: 3.9.4 Advisory Publication: January 30, 2014 without technical details Vendor Notification: January 30, 2014 Vendor Patch: January 31, 201...

7.5CVSS0.3AI score0.05412EPSS
Exploits7
htbridge
htbridge
added 2014/01/30 12:0 a.m.140 views

SQL Injection in AdRotate

High-Tech Bridge Security Research Lab discovered vulnerability in AdRotate, which can be exploited to perform SQL Injection attacks. 1 SQL Injection in AdRotate: CVE-2014-1854 The vulnerability exists due to insufficient validation of "track" HTTP GET parameter passed to...

7.5CVSS1.5AI score0.05412EPSS
Exploits7Affected Software1
Rows per page
Query Builder