Importance (CVSS3.0)
★★★★★★★★☆☆ 8.8/ 10 - High
Details
A SQL Injection vulnerability was discovered in WordPress WP Statistics Plugin.
Because of this vulnerability malicious attackers can interact with the databases directly, potentially stealing information and creating new administrator accounts.
Solutions
Update the WordPress WP Statistics Plugin to the newest version (13.2.11 and newer).
Source
We provide information about critical vulnerabilities of WordPress for people who are using or are considering using Wordpress for their projects.
“[WordPress WP Statistics Plugin](versions 13.2.10 and older) Vulnerability in SQL Injection”, by WS Security is licensed under CC BY 4.0.
Comments