Facebook Opengraph Meta <= 1.0 - SQL Injection

The facebook-opengraph-meta-plugin WordPress plugin was affected by a SQL Injection security vulnerability...

WordPress Facebook Opengraph Meta 1.0 SQL Injection

Exploit Title: WordPress Facebook Opengraph Meta Plugin plugin getvar"SELECT COUNT AS count FROM $wpdb-postmeta WHERE metakey = 'OgMeta'"; $count = $result'count'; if $count 0 $totalpages = ceil$count/$limit; else $totalpages = 0; if $page $totalpages $page=$totalpages; $start = $limit$page -...

WordPress Facebook Opengraph Meta Plugin <= 1.0 - SQL Injection

Facebook Opengraph Meta plugin is prone to an SQL injection. This vulnerability allows an attacker to modify data, alter queries to the application SQL database, compromise the access and application or exploit hidden vulnerabilities in the underlying database. Solution Upgrade the plugin...