WordPress Plugin Vulnerabilities

WpJobBoard < 4.5 - Multiple SQL Injections

Description

The wpjobboard WordPress plugin was affected by a Multiple SQL Injections security vulnerability.

Affects Plugins

Plugin icon
wpjobboard
Fixed in 4.5

References

CVE
CVE-2018-5695
URL
https://www.vulnerability-lab.com/get_content.php?id=1940

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89
CVSS
7.2 (high)

Miscellaneous

Verified
No
WPVDB ID
5e3524d0-fb7d-42ed-b111-f99ab1922319

Timeline

Publicly Published
2018-01-06 (about 8 years ago)
Added
2019-08-20 (about 6 years ago)
Last Updated
2020-09-22 (about 5 years ago)

Other

Published
Title
Published
2014-08-01
Title
Link Library 5.1.6 - link-library-ajax.php Multiple Parameter SQL Injection
Published
2023-01-12
Title
Simple Membership WP < 1.8 - Admin+ SQLi
Published
2021-07-24
Title
Broken Link Manager <= 0.6.5 - Authenticated (admin+) SQL Injection
Published
2021-10-11
Title
Asgaros Forum < 1.15.13 - Unauthenticated SQL Injection
Published
2024-05-23
Title
Web Directory Free < 1.7.0 - Unauthenticated SQL Injection