PT-2023-10167 · WordPress · I Recommend This Plugin

Oskar Adin

Publicado

2023-04-20

Atualizado

2024-05-17

CVE-2014-125099

CVSS v2.0

6.5

Média

Vetor

AV:N/AC:L/Au:S/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions I Recommend This Plugin versions up to 3.7.2

Description A critical vulnerability has been found in the I Recommend This Plugin on WordPress, affecting an unknown functionality of the file dot-irecommendthis.php. The manipulation leads to sql injection, and the attack can be launched remotely.

Recommendations For versions up to 3.7.2, upgrade to version 3.7.3 to address this issue.

Correção

SQL injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-89

Identificadores relacionados

CVE-2014-125099

Produtos afetados

I Recommend This Plugin

PT-2023-10167 · WordPress · I Recommend This Plugin

CVE-2014-125099

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 8