Description

WordPress Plugin Mingle Forum is prone to multiple SQL injection vulnerabilities and a security-bypass vulnerability because it fails to adequately sanitize user-supplied input. Exploiting the security-bypass issue may allow an attacker to bypass certain security restrictions and perform unauthorized actions. The attacker can exploit the SQL-injection issue by manipulating the SQL query logic to carry out unauthorized actions on the underlying database. This may compromise the application and may aid in further attacks. WordPress Plugin Mingle Forum versions 1.0.24 and 1.0.26 are vulnerable; other versions may also be affected.

Remediation

Update to plugin version 1.0.27 or latest

References

http://www.securityfocus.com/bid/45733/exploit

http://www.charleshooper.net/blog/multiple-vulnerabilities-in-mingle-forum-wordpress-plugin/

http://www.exploit-db.com/exploits/15943/

http://secunia.com/advisories/42829/

Related Vulnerabilities

Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-1813)

WordPress Plugin wpShopGermany Free Arbitrary File Upload (4.0.10)

Ruby on Rails Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-0155)

WordPress Plugin CPT Bootstrap Carousel Cross-Site Scripting (1.12)

WordPress Plugin WordPress Alipay/Tenpay/PayPal SQL Injection (3.7.2)

Severity

High

Classification

CWE-89 CWE-425 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

Tags

Missing Update Authentication Bypass SQL Injection