1 results (0.003 seconds)
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2015-10124 – Most Popular Posts Widget Plugin functions.php show_views sql injection
https://notcve.org/view.php?id=CVE-2015-10124
02 Feb 2015 — A vulnerability was found in Most Popular Posts Widget Plugin up to 0.8 on WordPress. It has been classified as critical. Affected is the function add_views/show_views of the file functions.php. The manipulation leads to sql injection. It is possible to launch the attack remotely. • https://github.com/wp-plugins/most-popular-posts-widget-lite/commit/a99667d11ac8d320006909387b100e9a8b5c12e1 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •