WordPress 2.1.3 SQL Injection Vulnerability
6 days after WordPress 2.2 release, Janek Vind has discovered a vulnerability in WordPress 2.1.3, which can be exploited to conduct SQL injection attacks. Secunia has the scoop on this one :
Input passed to the "cookie" parameter in wp-admin/admin-ajax.php is not properly sanitized before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.
As dangerous as this vulnerability seems, the attacker needs to know the database table prefix in order to carry on successful data enumeration.
I wonder how many of these vulnerabilities are found by source code analysis vs. Changelog.txt "reverse engineering" 
Original Advisory : http://www.waraxe.us/advisory-50.html
Thank you for reading this post. You can now Leave A Comment (0) or Leave A Trackback.
Print This Post
Post Info
This entry was posted on Monday, May 21st, 2007 . Tagged with:You can follow any responses to this entry through the Comments Feed. You can Leave A Comment, or A Trackback.
Previous Post: Security Keywords MFA (made for ads) websites »
Next Post: Finjan Web Security Trends Report – Q1/2007 »
Read More
Related Reading:- My Twitter Notes on 2010-07-25
- New NetWitness Visualize : Welcome To The Future!
- My Twitter Notes on 2010-07-18
- My Twitter Notes on 2010-07-11
- My Twitter Notes on 2010-06-27
- Qualys and Imperva Integration: Natural Evolution
- My Twitter Notes on 2010-06-20
- Pro CERT – First Romanian Commercial CERT
- GFI EventsManager 2010 Review
- My Twitter Notes on 2010-06-13
