Podatność CVE-2015-2824

Podatność CVE-2015-2824

Publikacja: 2015-04-06

Opis:

	Tytuł	Autor	Data
Med.	WordPress Simple Ads Manager 2.5.94 / 2.5.96 SQL Injection	Le Hong Minh	04.04.2015

Typ:

(Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'))

Ogólna skala CVSS	Znaczenie	Łatwość wykorzystania
7.5/10	6.4/10	10/10

Affected software
Simple ads manager project -> Simple ads manager

http://packetstormsecurity.com/files/131280/WordPress-Simple-Ads-Manager-2.5.94-2.5.96-SQL-Injection.html

http://seclists.org/fulldisclosure/2015/Apr/6

http://seclists.org/fulldisclosure/2015/Apr/7

http://www.itas.vn/news/ITAS-Team-found-out-multiple-critical-vulnerabilities-in-Hakin9-IT-Security-Magazine-78.html

http://www.securityfocus.com/archive/1/535165/100/0/threaded

http://www.securityfocus.com/archive/1/535168/100/0/threaded

http://www.securityfocus.com/bid/73698

https://plugins.trac.wordpress.org/changeset/1136202/simple-ads-manager

https://wordpress.org/plugins/simple-ads-manager/changelog/

https://www.exploit-db.com/exploits/36613/