CVE-2011-4803

EUVD-2011-4721
SQL injection vulnerability in wptouch/ajax.php in the WPTouch plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the id parameter.
SQL Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 73%
Affected Products (NVD)
VendorProductVersion
bravenewcodewptouch
1.0
bravenewcodewptouch
1.1
bravenewcodewptouch
1.2
bravenewcodewptouch
1.3.5
bravenewcodewptouch
1.4
bravenewcodewptouch
1.5
bravenewcodewptouch
1.6
bravenewcodewptouch
1.7.5
bravenewcodewptouch
1.8.9.1
bravenewcodewptouch
1.8.9.3
bravenewcodewptouch
1.9
bravenewcodewptouch
1.9.1
bravenewcodewptouch
1.9.5
bravenewcodewptouch
1.9.6
bravenewcodewptouch
1.9.7.6
bravenewcodewptouch
1.9.7.7
bravenewcodewptouch
1.9.8
bravenewcodewptouch
1.9.8.1
bravenewcodewptouch
1.9.8.2
bravenewcodewptouch
1.9.8.3
bravenewcodewptouch
1.9.9
bravenewcodewptouch
1.9.9.1
bravenewcodewptouch
1.9.9.2
bravenewcodewptouch
1.9.9.3
bravenewcodewptouch
1.9.9.4
bravenewcodewptouch
1.9.9.5
bravenewcodewptouch
1.9.9.6
bravenewcodewptouch
1.9.9.7
bravenewcodewptouch
1.9.9.8
bravenewcodewptouch
1.9.10
bravenewcodewptouch
1.9.11
bravenewcodewptouch
1.9.12
bravenewcodewptouch
1.9.13
bravenewcodewptouch
1.9.14
bravenewcodewptouch
1.9.15
bravenewcodewptouch
1.9.16
bravenewcodewptouch
1.9.17
bravenewcodewptouch
1.9.18
bravenewcodewptouch
1.9.19
bravenewcodewptouch
1.9.19.1
bravenewcodewptouch
1.9.19.2
bravenewcodewptouch
1.9.19.3
bravenewcodewptouch
1.9.19.4
bravenewcodewptouch
1.9.19.5
bravenewcodewptouch
1.9.20
bravenewcodewptouch
1.9.21
bravenewcodewptouch
1.9.21.1
bravenewcodewptouch
1.9.22
bravenewcodewptouch
1.9.22.1
bravenewcodewptouch
1.9.23
bravenewcodewptouch
1.9.24
bravenewcodewptouch
1.9.25
bravenewcodewptouch
1.9.26
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.exploit-db.com/exploits/18039
http://www.exploit-db.com/exploits/18039