Back
WordPress Accesspress Social Icons plugin <= 1.8.0 - Authenticated SQL Injection (SQLi) vulnerability
- Product
- AccessPress Social Icons
- Description
- Authenticated SQL Injection (SQLi) vulnerability found by Nguyen Khang in WordPress Accesspress Social Icons plugin (version <= 1.8.0).
- Solution
- Update the WordPress Accesspress Social Icons plugin to the latest available version (at least 1.8.1).
- Classification
-
Type SQL Injection
OWASP Top 10 A1: Injection
- References
-
Plugin changelog
Vulnerability details
- CVE
- Name CVE-N/A
- Versions
-
Affected In
<= 1.8.0
Fixed In 1.8.1
- Disclosure date
- 2020-11-28
- Credits
- Nguyen Khang (SunCSR)