6 matches found
CVE-2015-5533
CVE-2015-5533 affects the WordPress Count Per Day plugin (before 3.4.1). The flaw is an SQL injection in counter-options.php exposed via the cpd_keep_month parameter to wp-admin/options-general.php. It requires at least authenticated administrator privileges, and CSRF may enable remote attackers ...
SQL Injection in Count Per Day WordPress Plugin
Advisory ID: HTB23267 Product: Count Per Day WordPress plugin Vendor: Tom Braider Vulnerable Versions: 3.4 and probably prior Tested Version: 3.4 Advisory Publication: July 1, 2015 without technical details Vendor Notification: July 1, 2015 Vendor Patch: July 1, 2015 Public Disclosure: July 22,...
WordPress Plugin Count Per Day 3.4 - SQL Injection
Advisory ID: HTB23267 Product: Count Per Day WordPress plugin Vendor: Tom Braider Vulnerable Versions: 3.4 and probably prior Tested Version: 3.4 Advisory Publication: July 1, 2015 without technical details Vendor Notification: July 1, 2015 Vendor Patch: July 1, 2015 Public Disclosure: July 22,...
WordPress Plugin Count Per Day 3.4 - SQL Injection
WordPress Plugin Count Per Day 3.4 - SQL Injection Advisory ID: HTB23267 Product: Count Per Day WordPress plugin Vendor: Tom Braider Vulnerable Versions: 3.4 and probably prior Tested Version: 3.4 Advisory Publication: July 1, 2015 without technical details Vendor Notification: July 1, 2015 Vendo...
WordPress Count Per Day 3.4 SQL Injection Vulnerability
WordPress Count Per Day plugin version 3.4 suffers from a remote SQL injection vulnerability. Product: Count Per Day WordPress plugin Vendor: Tom Braider Vulnerable Versions: 3.4 and probably prior Tested Version: 3.4 Advisory Publication: July 1, 2015 without technical details Vendor Notificatio...
WordPress Count Per Day 3.4 SQL Injection
Advisory ID: HTB23267 Product: Count Per Day WordPress plugin Vendor: Tom Braider Vulnerable Versions: 3.4 and probably prior Tested Version: 3.4 Advisory Publication: July 1, 2015 without technical details Vendor Notification: July 1, 2015 Vendor Patch: July 1, 2015 Public Disclosure: July 22,...