wp-private-messages - /wp-admin/profile.php msgid Parameter SQL Injection

Affects Plugin

no known fix
- plugin closed

Classification

Type SQLI
OWASP Top 10 A1: Injection
CWE CWE-89

Miscellaneous

Views 4039
Verified No
WPVDB ID 6865

Timeline

Publicly Published 2014-08-01 (over 5 years ago)
Added 2014-08-01 (over 5 years ago)
Last Updated 2015-05-15 (almost 5 years ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin