WordPress Plugin Vulnerabilities

All In One WP Security & Firewall <= 3.9.0 - Blind SQL Injection

Description

There are some pages which use the WordPress esc_sql() function incorrectly.

Proof of Concept

Affects Plugins

Plugin icon
all-in-one-wp-security-and-firewall
Fixed in 3.9.1

References

CVE
CVE-2015-9310
Exploitdb
36671
URL
https://packetstormsecurity.com/files/#131317/
URL
https://www.homelab.it/index.php/2015/04/07/wordpress-all-in-one-wp-security-sql-injection-vulnerability/

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89
CVSS
9.8 (critical)

Miscellaneous

Submitter
Claudio Viviani
Submitter website
http://www.homelab.it
Submitter twitter
homelabit
Verified
No
WPVDB ID
43af54e1-049e-44f3-9357-f24e1e98b9d1

Timeline

Publicly Published
2015-04-07 (about 10 years ago)
Added
2015-04-07 (about 10 years ago)
Last Updated
2020-09-22 (about 5 years ago)

Other

Published
Title
Published
2025-04-07
Title
CardGate Payments for WooCommerce < 3.2.2 - Authenticated (Administrator+) SQL Injection
Published
2024-07-09
Title
Paid Memberships Pro - Member Directory Add On < 1.2.6 - Contributor+ Sensitive Information Disclosure via SQLi
Published
2016-08-23
Title
Q and A - Authenticated SQL Injection
Published
2022-03-07
Title
Title Experiments Free < 9.0.1 - Unauthenticated SQLi
Published
2014-08-01
Title
Malmonation - debate.php id Parameter SQL Injection