WordPress Plugin Vulnerabilities

A to Z Category Listing <= 1.3 - SQL Injection

Description

The a-to-z-category-listing WordPress plugin was affected by a SQL Injection security vulnerability.

Affects Plugins

Plugin icon
a-to-z-category-listing
No known fix

References

Exploitdb
17809

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89

Miscellaneous

Verified
No
WPVDB ID
ef53a477-07b9-4c1d-a36b-e11a6b0fad3d

Timeline

Publicly Published
2014-08-01 (about 11 years ago)
Added
2014-08-01 (about 11 years ago)
Last Updated
2019-10-21 (about 6 years ago)

Other

Published
Title
Published
2025-05-16
Title
Short URL <= 1.6.8 - Subscriber+ SQLi
Published
2026-04-29
Title
GD Rating System < 3.7 - Unauthenticated SQL Injection
Published
2025-09-11
Title
Ajax WooSearch <= 1.0.0 - Unauthenticated SQL Injection
Published
2024-09-25
Title
Classic Editor and Classic Widgets < 1.4.2 - Authenticated (Subscriber+) SQL Injection
Published
2021-02-08
Title
Newsletter by Supsystic <= 1.5.6 - Authenticated SQL Injection