WordPress Media Library Categories Plugin 'termid' Parameter SQL Injection Vulnerability Network Vulnerability

Summary

This host is installed with WordPress Media Library Categories plugin and is prone to sql injection vulnerability.

Impact

Successful exploitation will allow attacker to perform SQL Injection attack and gain sensitive information. Impact Level: Application

Solution

Upgrade to WordPress Media Library Categories plugin version 1.0.7 or later For updates refer to http://wordpress.org/extend/plugins/media-library-categories/

Insight

The flaw is due to improper validation of user-supplied input passed via the 'termid' parameter to '/wp-content/plugins/media-library-categories /sort.php', which allows attackers to manipulate SQL queries by injecting arbitrary SQL code.

Affected

WordPress Media Library Categories plugin version 1.0.6 and prior.

References

http://osvdb.org/74381
http://packetstormsecurity.org/files/view/103756/medialibrarycategories-sql.txt
http://secunia.com/advisories/45534
http://www.exploit-db.com/exploits/17628/

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

AWStats Totals 'sort' Parameter Remote Command Execution Vulnerabilities
Adobe ColdFusion Multiple Vulnerabilities-01 May-2014
ArticleSetup Multiple Cross-Site Scripting and SQL Injection Vulnerabilities
AudiStat multiple vulnerabilities
Atlassian JIRA Privilege Escalation and Multiple Cross Site Scripting Vulnerabilities

Take action and discover your vulnerabilities