WordPress Plugin Vulnerabilities

WP Comment Remix < 1.4.4 - SQL Injection

Description

The wp-comment-remix WordPress plugin was affected by a SQL Injection security vulnerability.

Affects Plugins

Plugin icon
wp-comment-remix
Fixed in 1.4.4

References

CVE
CVE-2008-4732
Exploitdb
6747
URL
http://chxsecurity.org/advisories/adv-3-full.txt
URL
https://exchange.xforce.ibmcloud.com/vulnerabilities/45860

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89

Miscellaneous

Verified
No
WPVDB ID
07d34e16-07fc-4d97-85ba-3ab6cdc428f4

Timeline

Publicly Published
2008-10-14 (about 17 years ago)
Added
2019-08-22 (about 6 years ago)
Last Updated
2019-11-28 (about 6 years ago)

Other

Published
Title
Published
2023-09-18
Title
wpDiscuz < 7.6.6 - Unauthenticated SQL Injection
Published
2023-10-30
Title
Wp photo text slider 50 < 8.1 - Authenticated (Subscriber+) SQL Injection via Shortcode
Published
2025-09-25
Title
Featured Image from URL (FIFU) < 5.2.8 - Authenticated (Admin+) SQL Injection
Published
2021-10-11
Title
WPSchoolPress < 2.1.10 - Multiple Authenticated SQL Injections
Published
2015-02-09
Title
Users Ultra <= 1.4.35 - SQL Injection