CVE-2013-6243

Currently unrated

Key Information:

Vendor: Wordpress
Status: Landing Pages Plugin
Vendor: CVE Published:; 23 October 2013

Summary

SQL injection vulnerability in the Landing Pages plugin 1.2.3, before 20131009, and earlier for WordPress allows remote attackers to execute arbitrary SQL commands via the "post" parameter to index.php.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/87803

vdb-entryx_refsource_XF

http://plugins.trac.wordpress.org/changeset?reponame=&old...

x_refsource_CONFIRM

http://osvdb.org/98334

vdb-entryx_refsource_OSVDB

Timeline

Vulnerability published
Oct 23, 2013
Vulnerability Reserved
Oct 23, 2013