WordPress Plugin Vulnerabilities

Comment Control 0.3.0 - comment-control.php type Parameter SQL Injection

Description

The comment-control WordPress plugin was affected by a comment-control.php type Parameter SQL Injection security vulnerability.

Affects Plugins

Plugin icon
comment-control
Fixed in 0.3.1

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89

Miscellaneous

Verified
No
WPVDB ID
311f71a6-2c5e-49f0-a294-cfa4b90ba6af

Timeline

Publicly Published
2014-08-01 (about 11 years ago)
Added
2014-08-01 (about 11 years ago)
Last Updated
2015-05-15 (about 10 years ago)

Other

Published
Title
Published
2008-01-30
Title
WassUp 1.4.3 - (spy.php to_date) SQL Injection Exploit
Published
2022-12-09
Title
WP RSS By Publishers <= 0.1 - Admin+ SQLi
Published
2015-02-21
Title
Gallery Bank <= 3.0.101 - SQL Injection
Published
2024-04-04
Title
WP Advanced Search <= 1.1.6 - Admin+ SQL Injection
Published
2026-01-07
Title
Media Search Enhanced < 0.9.2 - Authenticated (Author+) SQL Injection