WordPress Plugin Vulnerabilities

Active Directory Integration < 4.1.5 - SQL Injection via CSRF

Description

The plugin does not properly verify nonces and sufficiently escape user-supplied parameters, leading to Cross-Site Request Forgery and time-based SQL Injection vulnerabilities via the orderby and order parameters.

Affects Plugins

Plugin icon
ldap-login-for-intranet-sites
Fixed in 4.1.5

References

CVE
CVE-2023-2599
CVE
CVE-2023-2484

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89
CVSS
3.1 (low)

Miscellaneous

Original Researcher
Marco Wotschka
Verified
No
WPVDB ID
4894b09e-4d30-4de3-8b7e-037a4c3cf207

Timeline

Publicly Published
2023-05-12 (about 2 years ago)
Added
2023-06-09 (about 2 years ago)
Last Updated
2023-06-09 (about 2 years ago)

Other

Published
Title
Published
2022-03-07
Title
Title Experiments Free < 9.0.1 - Unauthenticated SQLi
Published
2022-04-13
Title
WP Video Gallery <= 1.7.1 - Unauthenticated SQLi
Published
2014-08-01
Title
iCopyright(R) Article Tools <= 1.1.4 - SQL Injection
Published
2021-03-15
Title
Tutor LMS < 1.8.3 - SQL Injection via tutor_quiz_builder_get_question_form
Published
2025-05-16
Title
Magic Responsive Slider and Carousel WordPress < 1.6 - Authenticated (Contributor+) SQL Injection