CVE-2012-2109 in BuddyPress plugin정보

요약 (영어)

SQL injection vulnerability in wp-load.php in the BuddyPress plugin 1.5.x before 1.5.5 of WordPress allows remote attackers to execute arbitrary SQL commands via the page parameter in an activity_widget_filter action.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

예약하다

2012. 04. 04.

공개

2012. 09. 04.

상태

확인됨

엔트리

VulDB provides additional information and datapoints for this CVE:

아이디	취약성	CWE	악용	대책	CVE
62009	BuddyPress BuddyPress plugin wp-load.php SQL 주입	89	개념 증명	공식 수정	CVE-2012-2109

설명

CPE

CWE

CVSS

익스플로잇

역사

차이

연결하다

위협 인텔리전스

API JSON

API XML

API CSV

출처

MITRE
NVD
CVE Details

◂ 이전개요다음 ▸

Interested in the pricing of exploits?

See the underground prices here!