In association with heise online

08 June 2007, 13:52

SQL injection vulnerability in Wordpress

  • Twitter
  • Facebook
  • submit to slashdot
  • StumbleUpon
  • submit to reddit

An SQL injection vulnerability in Wordpress may be used to compromise blog systems running the suite. An exploit has been published on Milw0rm which allows unauthorised access to the underlying database through the function wp.suggestCategories in the xmlrpc.php module. This does not filter user parameters correctly, allowing attackers to pass their own commands to the database, for instance to manipulate content or view names and password hashes of other users. Attackers must, however, authenticate themselves to exploit this flaw.

This vulnerability has been discovered in version 2.2, other version are not affected. The user authentication required to exploit it minimises the risk of potential attacks and users are advised to grant write access to the system exclusively to trusted persons. However a patch has been made available.

See also:


Print Version | Send by email | Permalink:

  • July's Community Calendar

The H Open

The H Security

The H Developer

The H Internet Toolkit