WordPress Media Library Categories Plugin 'termid' Parameter SQL Injection Vulnerability Network Vulnerability

Summary

This host is installed with WordPress Media Library Categories plugin and is prone to sql injection vulnerability.

Impact

Successful exploitation will allow attacker to perform SQL Injection attack and gain sensitive information. Impact Level: Application

Solution

Upgrade to WordPress Media Library Categories plugin version 1.0.7 or later For updates refer to http://wordpress.org/extend/plugins/media-library-categories/

Insight

The flaw is due to improper validation of user-supplied input passed via the 'termid' parameter to '/wp-content/plugins/media-library-categories /sort.php', which allows attackers to manipulate SQL queries by injecting arbitrary SQL code.

Affected

WordPress Media Library Categories plugin version 1.0.6 and prior.

References

http://osvdb.org/74381
http://packetstormsecurity.org/files/view/103756/medialibrarycategories-sql.txt
http://secunia.com/advisories/45534
http://www.exploit-db.com/exploits/17628/

Updated on 2015-03-25

Severity

Classification

CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

AproxEngine Multiple Remote Input Validation Vulnerabilities
ActivDesk Multiple Cross Site Scripting and SQL Injection Vulnerabilities
appRain CMF SQL Injection And Cross Site Scripting Vulnerabilities
Allegro RomPager `Misfortune Cookie` Vulnerability
Artmedic Kleinanzeigen File Inclusion Vulnerability

Take action and discover your vulnerabilities