WordPress Plugin Vulnerabilities

Lead-Octopus-Power Plugin - SQL Injection

Description

The Lead-Octopus-Power WordPress plugin was affected by a SQL Injection security vulnerability.

Affects Plugins

Plugin icon
Lead-Octopus-Power
No known fix

References

CVE
CVE-2014-5189
URL
https://packetstormsecurity.com/files/#127640/

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89

Miscellaneous

Submitter
ethicalhack3r
Submitter twitter
ethicalhack3r
Verified
No
WPVDB ID
4bed3dd9-8bce-4ace-8095-4f9b46334122

Timeline

Publicly Published
2014-09-27 (about 11 years ago)
Added
2014-09-27 (about 11 years ago)
Last Updated
2019-10-21 (about 6 years ago)

Other

Published
Title
Published
2026-05-12
Title
Court Reservation – Manage Your Court Bookings Online < 1.10.12 - Unauthenticated SQL Injection
Published
2024-07-19
Title
UiPress lite < 3.4.07 - Authenticated (Administrator+) SQL Injection
Published
2015-04-14
Title
Community Events < 1.4 - SQL Injection
Published
2014-08-01
Title
WP-SpamFree 3.2.1 - Spam SQL Injection
Published
2024-04-22
Title
WP-Recall – Registration, Profile, Commerce & More < 16.26.6 - Unauthenticated SQL Injection