CVE-2003-1598

Name of the Vulnerable Software and Affected Versions WordPress versions 0.7 and earlier

Description A SQL injection issue in the log.header.php file allows remote attackers to execute arbitrary SQL commands via the posts variable. This enables attackers to manipulate database queries, potentially leading to unauthorized data access or modification.

Recommendations For WordPress versions 0.7 and earlier, as a temporary workaround, consider restricting access to the log.header.php file or disabling the use of the posts variable in this context until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.