CVE-2014-10013

Currently unrated

Key Information:

Vendor: Wordpress
Status: Another WordPress Classifieds Plugin
Vendor: CVE Published:; 13 January 2015

Summary

SQL injection vulnerability in the Another WordPress Classifieds Plugin plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the keywordphrase parameter in a dosearch action.

References

http://packetstormsecurity.com/files/129035/Another-WordP...

x_refsource_MISC

http://www.exploit-db.com/exploits/35204

exploitx_refsource_EXPLOIT-DB

https://exchange.xforce.ibmcloud.com/vulnerabilities/98589

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Jan 13, 2015
Vulnerability Reserved
Jan 13, 2015