SQL injection vulnerability in viewimg.php in the Paolo Palmonari Photoracer plugin 1.0 for WordPress allows remote attackers to execute arbitrary SQL commands via the id parameter.
References
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2009-06-19 11:00
Updated : 2017-09-28 18:34
NVD link : CVE-2009-2122
Mitre link : CVE-2009-2122
JSON object : View
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Products Affected
wordpress
- wordpress
paolo_palmonari
- photoracer_plugin_for_wordpress