WordPress Plugin Vulnerabilities

WP eCommerce <= 3.11.3 - SQL Injection in sessionid

Description

From vendor: "This vulnerability only affects users who use eWay as their payment gateway, have Gold Cart activated, and are using the as-of-yet-unreleased Theme Engine 2.0. We believe the number of users affected is likely close to zero, due to these conditions – but still, we highly recommend updating."

Affects Plugins

Plugin icon
wp-e-commerce
Fixed in 3.11.4

References

URL
https://wptavern.com/wp-ecommerce-3-11-4-patches-sql-injection-vulnerability
URL
https://wpecommerce.org/news/wp-ecommerce-3-11-4-security-update/
URL
https://github.com/wp-e-commerce/WP-e-Commerce/commit/1ea8329a5617c8181490c3fad102cc81d75eb0d4

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89

Miscellaneous

Submitter
ethicalhack3r
Submitter twitter
ethicalhack3r
Verified
No
WPVDB ID
517c0ece-b959-4e99-a9d7-1b322e3fc456

Timeline

Publicly Published
2016-11-12 (about 9 years ago)
Added
2016-11-15 (about 9 years ago)
Last Updated
2019-11-01 (about 6 years ago)

Other

Published
Title
Published
2025-01-07
Title
MDTF – Meta Data and Taxonomies Filter < 1.3.3.6 - Authenticated (Contributor+) SQL Injection
Published
2025-01-07
Title
WPMU Prefill Post <= 1.02 - Authenticated (Administrator+) SQL Injection
Published
2023-06-15
Title
Contact Form by WD <= 1.13.23 - Admin+ SQLi
Published
2025-06-09
Title
TicketBAI Facturas para WooCommerce < 3.21 - Unauthenticated SQL Injection
Published
2025-09-09
Title
Duplicate Page and Post <= 2.9.5 - Authenticated (Contributor+) SQL Injection via meta_key Parameter