WordPress Plugin Vulnerabilities

Menu Creator <= 1.1.7 - SQL Injection

Description

The wp-menu-creator WordPress plugin was affected by a SQL Injection security vulnerability.

Affects Plugins

Plugin icon
wp-menu-creator
No known fix

References

Exploitdb
17689

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89

Miscellaneous

Verified
No
WPVDB ID
d2215de0-fc8d-49d6-bf30-e258cd0ea5ef

Timeline

Publicly Published
2014-08-01 (about 9 years ago)
Added
2014-08-01 (about 9 years ago)
Last Updated
2019-10-21 (about 4 years ago)

Other

Published
Title
Published
2021-10-06
Title
Visitor Traffic Real Time Statistics < 3.9 - Subscriber+ SQL Injection
Published
2014-08-01
Title
WordPress Landing Pages < 1.2.3 - module.redirect-ab-testing.php permalink_name Parameter SQL Injection
Published
2023-10-31
Title
RSVPMarker < 9.9.4 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Published
2015-04-10
Title
Duplicator < 0.5.16 - SQL Injection & CSRF
Published
2014-08-01
Title
yolink Search <= 1.1.4 - includes/bulkcrawl.php Multiple Parameter SQL Injection