WordPress 2.1.2 Authenticated XMLRPC SQL Injection

Affects WordPress

fixed in version 2.1.3

References

CVE 2007-1897
EXPLOITDB 3656
SECUNIA 25108
URL https://www.notsosecure.com/blog/2007/04/03/wordpress-212-xmlrpc-security-issues/
URL https://wordpress.org/news/2007/04/wordpress-213-and-2010/

Classification

Type SQLI
OWASP Top 10 A1: Injection
CWE CWE-89

Miscellaneous

Views 3934
Verified No
WPVDB ID 6027

Timeline

Publicly Published 2014-08-01 (almost 5 years ago)
Added 2014-08-01 (almost 5 years ago)
Last Updated 2018-08-29 (11 months ago)