9 matches found
EUVD-2013-3465
Malware in sbrugna...
CVE-2013-3530
SQL injection vulnerability in playlist.php in the Spiffy XSPF Player plugin 0.1 for WordPress allows remote attackers to execute arbitrary SQL commands via the playlistid parameter...
Sql injection
SQL injection vulnerability in playlist.php in the Spiffy XSPF Player plugin 0.1 for WordPress allows remote attackers to execute arbitrary SQL commands via the playlistid parameter...
CVE-2013-3530
SQL injection vulnerability in playlist.php in the Spiffy XSPF Player plugin 0.1 for WordPress allows remote attackers to execute arbitrary SQL commands via the playlistid parameter...
CVE-2013-3530
CVE-2013-3530 affects the Spiffy XSPF Player WordPress plugin (0.1) components playlist.php through the playlist_id parameter, enabling SQL injection. The issue is confirmed in multiple sources (e.g., WPVulndb, PatchStack) and has associated exploit references; exploitation has been reported. Rem...
WordPress Spiffy XSPF Player 0.1 SQL Injection
Exploit Title : Wordpress Spiffy XSPF Player plugin SQL Injection Exploit Author : Ashiyane Digital Security Team Home : www.ashiyane.org Security Risk : High Version : 0.1 Dork : inurl:wp-content/plugins/spiffy/playlist.php?playlistid=...
WordPress Plugin Spiffy XSPF Player - playlist_id SQL Injection
WordPress Plugin Spiffy XSPF Player - playlistid SQL Injection source: https://www.securityfocus.com/bid/58976/info Spiffy XSPF Player plug-in for WordPress is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query...
WordPress Spiffy XSPF Player Plugin - SQL Injection
This WordPress Spiffy XSPF Player plugin's "playlistid" parameter is prone to an SQL injection. This vulnerability allows an attacker to modify data, compromise the access and application or exploit hidden vulnerabilities in the underlying database. Solution Update the plugin...
WordPress Plugin Spiffy XSPF Player - 'playlist_id' SQL Injection
source: https://www.securityfocus.com/bid/58976/info Spiffy XSPF Player plug-in for WordPress is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...