SQL Injection in Multiple WordPress Plugins
Tags
attack-pattern: | Data Vulnerabilities - T1588.006 |
Common Information
Type | Value |
---|---|
UUID | 4a328d3b-fbba-4f47-a3ed-66b12964cdf7 |
Fingerprint | 8c48b99aeb5f6001 |
Analysis status | DONE |
Considered CTI value | 2 |
Text language | |
Published | Jan. 12, 2023, 9:44 a.m. |
Added to db | Feb. 14, 2023, 3:33 p.m. |
Last updated | Dec. 22, 2024, 8:28 p.m. |
Headline | SQL Injection in Multiple WordPress Plugins |
Title | SQL Injection in Multiple WordPress Plugins |
Detected Hints/Tags/Attributes | 16/1/13 |
Source URLs
Redirection | Url | |
---|---|---|
Details | Source | https://www.tenable.com/security/research/tra-2023-2 |
URL Provider
RSS Feed
Details | Id | Enabled | Feed title | Url | Added to db |
---|---|---|---|---|---|
Details | 246 | ✔ | Tenable Research Advisories | https://tenable.com/security/research/feed | 2024-08-30 22:08 |
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | CVE | 5 | cve-2023-23488 |
|
Details | CVE | 2 | cve-2023-23489 |
|
Details | CVE | 2 | cve-2023-23490 |
|
Details | Domain | 201 | wordpress.org |
|
Details | File | 1 | ajax-functions.php |
|
Details | File | 30 | admin-ajax.php |
|
Details | IPv4 | 4 | 3.1.0.2 |
|
Details | IPv4 | 1 | 3.1.0.3 |
|
Details | Url | 1 | https://wordpress.org/plugins/paid-memberships-proaffected |
|
Details | Url | 1 | https://wordpress.org/plugins/paid-memberships-pro |
|
Details | Url | 1 | https://wordpress.org/plugins/easy-digital-downloads |
|
Details | Url | 1 | http://target_host/wp-admin/admin-ajax.php?action=edd_download_search&s=1 |
|
Details | Url | 1 | https://wordpress.org/plugins/survey-maker |