ThreatPress

WordPress Vulnerabilities Database

Back

WordPress InLinks plugin 1.0 - Authenticated SQL Injection (SQLi) vulnerability

Product
InLinks
Description
Authenticated SQL Injection (SQLi) vulnerability found by Dimopoulos Elias in WordPress InLinks plugin (version 1.0).
Solution
This plugin has been closed and is no longer available for download. It hasn’t been updated in over 2 years. It may no longer be maintained or supported and may have compatibility issues when used with more recent versions of WordPress.
Classification
Type SQL Injection
OWASP Top 10 A1: Injection
References
Plugin changelog
CVE
Name CVE-N/A
Versions
Affected In 1.0
Disclosure date
2017-11-26
Credits
Dimopoulos Elias
Submitter
ThreatPress