WordPress Plugin Vulnerabilities

DukaPress <= 2.5.9 - Unauthenticated Blind SQL Injection

Description

The code in dukapress/download.php does not sanitize user input from $_GET['id'] before passing it to query() allowing SQL to be injected.

The user is not required to be logged into WordPress in order to exploit this vulnerability.

Affects Plugins

Plugin icon
dukapress
Fixed in 2.5.9.1

References

CVE
CVE-2015-1000011

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89
CVSS
9.8 (critical)

Miscellaneous

Submitter
Larry W. Cashdollar
Submitter twitter
_larry0
Verified
No
WPVDB ID
61727560-1055-45b6-82e8-6a118164996e

Timeline

Publicly Published
2015-08-22 (about 10 years ago)
Added
2015-08-22 (about 10 years ago)
Last Updated
2020-09-22 (about 5 years ago)

Other

Published
Title
Published
2016-01-25
Title
Appointment Booking Calendar < 1.1.24 - Unauthenticated SQL Injection
Published
2015-07-22
Title
Count Per Day 3.4 - SQL Injection
Published
2023-01-20
Title
FL3R FeelBox <= 8.1 - Unauthenticated SQLi
Published
2022-03-23
Title
Daily Prayer Time < 2022.03.01 - Unauthenticated SQLi
Published
2016-09-11
Title
MailPoet Newsletters <= 2.7.2 - SQL Injection