SQL injection vulnerability in the Another WordPress Classifieds Plugin plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the keywordphrase parameter in a dosearch action.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2015-01-13 03:59
Updated : 2017-09-07 18:29
NVD link : CVE-2014-10013
Mitre link : CVE-2014-10013
JSON object : View
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Products Affected
awpcp
- another_wordpress_classifieds_plugin