WordPress Plugin Vulnerabilities

WordPress Landing Pages < 1.2.3 - module.utils.php post Parameter SQL Injection

Description

The WordPress Landing Pages WordPress plugin was affected by a module.utils.php post Parameter SQL Injection security vulnerability.

Affects Plugins

Plugin icon
landing-pages
Fixed in 1.2.3

References

CVE
CVE-2013-6243
URL
https://exchange.xforce.ibmcloud.com/vulnerabilities/87803

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89

Miscellaneous

Verified
No
WPVDB ID
f4dc4e61-8712-4734-a700-ad566dd40623

Timeline

Publicly Published
2014-08-01 (about 11 years ago)
Added
2014-08-01 (about 11 years ago)
Last Updated
2019-10-21 (about 6 years ago)

Other

Published
Title
Published
2023-01-23
Title
WP Review Slider < 12.2 - Subscriber+ SQLi
Published
2014-08-01
Title
WP RSS Poster 1.0.0 - wp-admin/admin.php wrp-add-new Page id Parameter SQL Injection
Published
2024-01-12
Title
PDF Invoices & Packing Slips for WooCommerce < 3.7.6 - Shop Manager+ SQL Injection
Published
2024-06-04
Title
LifterLMS – WordPress LMS Plugin for eLearning < 7.6.3 - Authenticated (Contributor+) SQL Injection via Shortcode
Published
2023-11-03
Title
RSVPMarker < 10.6.7 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')