Description

SQL injection vulnerability in wp-trackback.php in Wordpress 1.5 and earlier allows remote attackers to execute arbitrary SQL commands via the tb_id parameter.

Remediation

References

CVE-2005-1687

Related Vulnerabilities

PostgreSQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-7486)

MySQL CVE-2020-14846 Vulnerability (CVE-2020-14846)

WordPress Plugin Duplicator-WordPress Migration Cross-Site Scripting (1.2.28)

WordPress Plugin Admin Custom Login Cross-Site Scripting (2.5.3.1)

Oracle Database Server CVE-2023-21949 Vulnerability (CVE-2023-21949)

Severity

High

Classification

CVE-2005-1687

Tags

Missing Update Known Vulnerabilities