WordPress Plugin Vulnerabilities

WPML < 3.1.9 - Multiple Vulnerabilities (Including SQLi)

Description

The sitepress-multilingual-cms WordPress plugin was affected by a Multiple Vulnerabilities (Including SQLi) security vulnerability.

Affects Plugins

Plugin icon
sitepress-multilingual-cms
Fixed in 3.1.9

References

CVE
CVE-2015-2314
CVE
CVE-2015-2791
CVE
CVE-2015-2792
Exploitdb
36414
URL
https://packetstormsecurity.com/files/#130810/
URL
https://klikki.fi/adv/wpml.html
URL
https://seclists.org/bugtraq/2015/Mar/60
URL
https://wpml.org/changelog/2015/03/wpml-security-update-bug-and-fix/

Miscellaneous

Submitter
erwanlr
Verified
No
WPVDB ID
9b7096ff-af8b-49e4-8f23-4e7e2964d2f5

Timeline

Publicly Published
2015-03-12 (about 11 years ago)
Added
2015-03-12 (about 11 years ago)
Last Updated
2019-12-28 (about 6 years ago)

Other

Published
Title
Published
2015-01-03
Title
SimpleFlickr 3.0.3 - CSRF & XSS
Published
2014-08-01
Title
Flexi Quote Rotator - Cross-Site Request Forgery & SQL Injection Vulnerabilities
Published
2014-08-01
Title
RokNewsPager <= 1.17 - XSS,DoS,Disclosure,Upload Vulnerabilities
Published
2020-06-21
Title
All in One Support Button < 1.8.8 - Authenticated Stored Cross-Site Scripting
Published
2015-05-15
Title
Encrypted Contact Form < 1.1 - CSRF & XSS