WonderPlugin Audio Player 2.0 Blind SQL Injection & XSS

Affects Plugin

fixed in version 2.1

References

CVE 2015-2199
CVE 2015-2218
EXPLOITDB 36086
URL http://security.szurek.pl/wonderplugin-audio-player-20-blind-sql-injection-and-xss.html

Classification

Type MULTI

Miscellaneous

Submitter Kacper Szurek
Submitter Website http://security.szurek.pl/
Submitter Twitter KacperSzurek
Views 5409
Verified No
WPVDB ID 7798

Timeline

Publicly Published 2015-02-19 (over 4 years ago)
Added 2015-02-19 (over 4 years ago)
Last Updated 2019-10-21 (28 days ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin