Detections
Analytics
WP Symposium Plugin for WordPress forum.php 'show' Parameter SQL Injection (Version Check)
high Nessus Plugin ID 83524
Language:
Synopsis
The remote web server hosts a web application that is affected by a SQL injection vulnerability.Description
The WordPress WP Symposium Plugin installed on the remote host is affected by a SQL injection vulnerability due to a failure to properly sanitize user-supplied input to the 'show' parameter of the forum.php script. An unauthenticated, remote attacker can exploit this issue to launch a SQL injection attack against the affected application, resulting in the manipulation and disclosure of arbitrary data.Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
Solution
Upgrade to WP Symposium Plugin version 15.4 or later.See Also
https://www.openwall.com/lists/oss-security/2015/04/14/5
http://www.nessus.org/u?7a6b17f4
https://plugins.trac.wordpress.org/changeset/1153677/wp-symposium
Plugin Details
Severity: High
ID: 83524
File Name: wordpress_wp_symposium_15_4.nasl
Version: 1.9
Type: remote
Family: CGI abuses
Published: 5/18/2015
Updated: 6/4/2024
Supported Sensors: Nessus
Enable CGI Scanning: true
Risk Information
VPR
Risk Factor: High
Score: 8.1
CVSS v2
Risk Factor: High
Base Score: 7.5
Temporal Score: 6.5
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P
Vulnerability Information
CPE: cpe:/a:wpsymposium:wp_symposium, cpe:/a:wordpress:wordpress
Required KB Items: installed_sw/WordPress, www/PHP
Excluded KB Items: Settings/disable_cgi_scanning
Exploit Available: true
Exploit Ease: No exploit is required
Patch Publication Date: 5/5/2015
Vulnerability Publication Date: 4/14/2015
Exploitable With
Elliot (Wordpress WP Symposium 15.1 SQL Injection)
Reference Information
CVE: CVE-2015-3325
BID: 74237