Lucene search
K

6 matches found

securityvulns
securityvulns
added 2014/10/14 12:0 a.m.53 views

Two SQL Injections in All In One WP Security WordPress plugin

Advisory ID: HTB23231 Product: All In One WP Security WordPress plugin Vendor: Tips and Tricks HQ, Peter, Ruhul, Ivy Vulnerable Versions: 3.8.2 and probably prior Tested Version: 3.8.2 Advisory Publication: September 3, 2014 without technical details Vendor Notification: September 3, 2014 Vendor...

6.5CVSS0.04155EPSS
Exploits6
CVE
CVE
added 2014/10/02 2:0 p.m.61 views

CVE-2014-6242

All In One WP Security & Firewall (WordPress) has SQL injection vulnerabilities fixed in version 3.8.3 and earlier analyzed in CVE-2014-6242. HTB reports two SQLi flaws affecting all versions before 3.8.3, exploitable via the orderby and order parameters to wp-admin/admin.php (aiowpsec page). Exp...

6.5CVSS8.3AI score0.04155EPSS
Exploits6References7Affected Software1
seebug.org
seebug.org
added 2014/09/29 12:0 a.m.48 views

Wordpress All In One WP Security Plugin 3.8.2 - SQL Injection

No description provided by source. Advisory ID: HTB23231 Product: All In One WP Security WordPress plugin Vendor: Tips and Tricks HQ, Peter, Ruhul, Ivy Vulnerable Versions: 3.8.2 and probably prior Tested Version: 3.8.2 Advisory Publication: September 3, 2014 without technical details Vendor...

6.5CVSS6.5AI score0.04155EPSS
Exploits6
exploitpack
exploitpack
added 2014/09/25 12:0 a.m.51 views

WordPress Plugin All In One WP Security 3.8.2 - SQL Injection

WordPress Plugin All In One WP Security 3.8.2 - SQL Injection Advisory ID: HTB23231 Product: All In One WP Security WordPress plugin Vendor: Tips and Tricks HQ, Peter, Ruhul, Ivy Vulnerable Versions: 3.8.2 and probably prior Tested Version: 3.8.2 Advisory Publication: September 3, 2014 without...

6.5CVSS7.5AI score0.04155EPSS
Exploits6
0day.today
0day.today
added 2014/09/25 12:0 a.m.74 views

WordPress All In One WP Security Plugin 3.8.2 SQL Injection Vulnerability

WordPress All In One WP Security plugin version 3.8.2 suffers from multiple remote SQL injection vulnerabilities. Product: All In One WP Security WordPress plugin Vendor: Tips and Tricks HQ, Peter, Ruhul, Ivy Vulnerable Versions: 3.8.2 and probably prior Tested Version: 3.8.2 Advisory Publication...

6.5CVSS0.04155EPSS
Exploits6
Exploit DB
Exploit DB
added 2014/09/25 12:0 a.m.73 views

WordPress Plugin All In One WP Security 3.8.2 - SQL Injection

Advisory ID: HTB23231 Product: All In One WP Security WordPress plugin Vendor: Tips and Tricks HQ, Peter, Ruhul, Ivy Vulnerable Versions: 3.8.2 and probably prior Tested Version: 3.8.2 Advisory Publication: September 3, 2014 without technical details Vendor Notification: September 3, 2014 Vendor...

6.5CVSS7AI score0.04155EPSS
Exploits6
Rows per page
Query Builder