Buddypress <= 1.5.4 - SQL Injection

Affects Plugin

fixed in version 1.5.5

References

CVE 2012-2109
ExploitDB 18690

Classification

Type SQLI
OWASP Top 10 A1: Injection
CWE CWE-89

Miscellaneous

Views 4093
Verified No
WPVDB ID 6330

Timeline

Publicly Published 2012-03-31 (over 8 years ago)
Added 2014-08-01 (almost 6 years ago)
Last Updated 2019-10-21 (9 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin