3 matches found
CVE-2008-4732
Summary of CVE-2008-4732 : The WP Comment Remix WordPress plugin is affected by an SQL injection in the file ajax_comments.php . The vulnerability allows remote attackers to execute arbitrary SQL commands through the p parameter. Affected version range is plugin versions before 1.4.4 . The issue ...
CVE-2008-4733
CVE-2008-4733 concerns the WP Comment Remix WordPress plugin. The vulnerability is an XSS in wpcommentremix.php affecting versions before 1.4.4, exploitable by supplying crafted values for the parameters (replytotext, quotetext, originallypostedby, sep, maxtags, tagsep, tagheadersep, taglabel, ta...
CVE-2008-4734
The CVE-2008-4734 entry describes a Cross-Site Request Forgery in the WordPress plugin WP Comment Remix (before 1.4.4). The vulnerability affects the wpcr_do_options_page function, where an attacker can trigger unauthorized administrator actions by crafting a request that sets the wpcr_hidden_for...