CVE-2014-125084

Name of the Vulnerable Software and Affected Versions Gimmie Plugin version 1.2.2

Description The issue is related to a lack of protection in the SQL query structure, which can be exploited to execute arbitrary SQL queries. This is a critical vulnerability that affects the processing of the file trigger referral.php, where the manipulation of the referrername argument leads to SQL injection.

Recommendations For Gimmie Plugin version 1.2.2, upgrade to version 1.3.0 to address this issue. As a temporary workaround, consider restricting access to the trigger referral.php file until the upgrade is applied. Additionally, avoid using the referrername argument in the affected file to minimize the risk of exploitation.