CVE-2017-5611
SQL injection vulnerability in wp-includes/class-wp-query.php in WP_Query in WordPress before 4.7.2 allows remote attackers to execute arbitrary SQL commands by leveraging the presence of an affected plugin or theme that mishandles a crafted post type name.
SQL Injection
Vendor | Product | Version |
---|---|---|
wordpress | wordpress | 𝑥 ≤ 4.7.1 |
debian | debian_linux | 8.0 |
debian | debian_linux | 9.0 |
oracle | data_integrator | 11.1.1.9.0 |
oracle | data_integrator | 12.2.1.3.0 |
oracle | data_integrator | 12.2.1.4.0 |
Debian Releases
Ubuntu Releases
Ubuntu Product | |||||||||||||||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
wordpress |
|
Common Weakness Enumeration