Description
SQL injection vulnerability in xmlrpc (xmlrpc.php) in WordPress 2.1.2, and probably earlier, allows remote authenticated users to execute arbitrary SQL commands via a string parameter value in an XML RPC mt.setPostCategories method call, related to the post_id variable.
Remediation
References
Related Vulnerabilities
WebLogic CVE-2020-14687 Vulnerability (CVE-2020-14687)
WordPress Plugin Welcart e-Commerce Multiple Vulnerabilities (1.8.2)
Python URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2016-1000110)
Atlassian Jira Incorrect Authorization Vulnerability (CVE-2018-20826)
Microsoft SQL Server CVE-2023-32025 Vulnerability (CVE-2023-32025)