WordPress Plugin Vulnerabilities

Social Slider < 7.4.2 - SQL Injection

Description

The social-slider WordPress plugin was affected by a SQL Injection security vulnerability.

Affects Plugins

Plugin icon
social-slider
Fixed in 7.4.2

References

CVE
CVE-2011-5286
URL
https://www.immuniweb.com/advisory/HTB23033

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89

Miscellaneous

Verified
No
WPVDB ID
d85a4478-0009-4ced-987c-c46dda1b3c2c

Timeline

Publicly Published
2011-07-20 (about 12 years ago)
Added
2019-08-23 (about 4 years ago)
Last Updated
2019-11-28 (about 4 years ago)

Other

Published
Title
Published
2014-08-01
Title
WP Forum Server 1.6.5 - index.php Multiple Parameter SQL Injection
Published
2014-08-01
Title
Photo album - Remote SQL Injection
Published
2023-06-22
Title
Quick Post Duplicator <= 2.0 - Contributor+ SQLi
Published
2023-12-28
Title
Page Generator < 1.7.2 - Authenticated(Administrator+) SQL Injection
Published
2022-04-13
Title
Product Filter For WooCommerce Product <= 1.3.0 - Unauthenticated SQLi