WordPress Plugin Vulnerabilities

Single Personal Message 1.0.3 – Authenticated SQL Injection

Description

Type user access: any user.

$_GET[‘message’] is not escaped. Is accessible for every registered user.

Proof of Concept

Affects Plugins

Plugin icon
simple-personal-message
No known fix

References

Exploitdb
40870
URL
https://lenonleite.com.br/en/2016/12/05/single-personal-message-1-0-3-plugin-wordpress-sql-injection/

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89

Miscellaneous

Submitter
Lenon Leite
Submitter website
http://lenonleite.com.br/
Submitter twitter
lenonleite
Verified
No
WPVDB ID
a819df3f-b017-43df-88dd-7075538e8e45

Timeline

Publicly Published
2016-12-05 (about 9 years ago)
Added
2016-12-18 (about 9 years ago)
Last Updated
2019-11-01 (about 6 years ago)

Other

Published
Title
Published
2026-01-13
Title
Tutor LMS Pro < 3.9.7 - Unauthenticated SQL Injection
Published
2025-05-16
Title
Sticky Radio Player <= 3.4 - Authenticated (Contributor+) SQL Injection
Published
2024-12-14
Title
TSB Occasion Editor <= 1.2.1 - Authenticated (Subscriber+) SQL Injection
Published
2022-12-21
Title
Fontsy <= 1.8.6 - Multiple Unauthenticated SQLi
Published
2022-01-27
Title
GWA AutoResponder <= 2.3 - Unauthenticated SQL Injection