SQL Injection Vulnerability in DMSGuestbook Plugin for WordPress
CVE-2008-0616

Currently unrated

Key Information:

Vendor: Wordpress
Status: Dmsguestbook
Vendor: CVE Published:; 6 February 2008

Summary

A SQL injection flaw exists in the administration panel of the DMSGuestbook 1.7.0 plugin for WordPress. This vulnerability enables remote authenticated administrators to execute arbitrary SQL commands through unspecified means. The impact of this vulnerability may allow unauthorized access to sensitive data or manipulation of the database, highlighting the importance of securing administrative access.

References

http://securityreason.com/securityalert/3615

third-party-advisoryx_refsource_SREASON

https://exchange.xforce.ibmcloud.com/vulnerabilities/40196

vdb-entryx_refsource_XF

http://www.securityfocus.com/archive/1/487437/100/0/threaded

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability published
Feb 6, 2008
Vulnerability Reserved
Feb 5, 2008