Companion Auto Update <= 3.3.5 - Authenticated SQL Injection

Affects Plugin

fixed in version 3.3.6

References

URL https://plugins.trac.wordpress.org/changeset?reponame=&new=2012158%40companion-auto-update&old=2006778%40companion-auto-update

Classification

Type SQLI
OWASP Top 10 A1: Injection
CWE CWE-89

Miscellaneous

Views 2703
Verified No
WPVDB ID 9407

Timeline

Publicly Published 2019-01-14 (10 months ago)
Added 2019-06-28 (5 months ago)
Last Updated 2019-06-28 (5 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin