WordPress Plugin Vulnerabilities

SermonBrowser <= 0.43.5 - SQL Injection

Description

The Sermon Browser WordPress plugin was affected by a SQL Injection security vulnerability.

Affects Plugins

Plugin icon
sermon-browser
Fixed in 0.43.6

References

Exploitdb
17214
URL
https://plugins.trac.wordpress.org/changeset/377568/

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89

Miscellaneous

Verified
No
WPVDB ID
fe748f7e-4e59-429c-9cbf-15684a90a87d

Timeline

Publicly Published
2011-04-26 (about 13 years ago)
Added
2014-08-01 (about 9 years ago)
Last Updated
2019-11-01 (about 4 years ago)

Other

Published
Title
Published
2020-05-15
Title
Photo Gallery by 10Web < 1.5.55 - Unauthenticated SQL Injection
Published
2021-11-15
Title
StopBadBots < 6.67 - Unauthenticated SQL Injection
Published
2023-03-22
Title
Formidable PRO2PDF < 3.11 - Subscriber+ SQLi
Published
2021-08-22
Title
Display users <= 2.0.0 - Authenticated SQL Injection
Published
2022-11-14
Title
Comic Book Management System < 2.2.0 - Admin+ SQLi