
SQL-injection in WordPress
Vulnerability: SQL-injection in WordPress Hitasoft FLV Player
Danger: Medium
Number of vulnerabilities: 1
Vector of operation: Remote
Impact: Unauthorized change
Affected products: WordPress Hitasoft FLV Player Plugin 1.x
Affected versions: WordPress Hitasoft FLV Player 1.1, maybe earlier.
Description:
The vulnerability allows a remote user to execute arbitrary SQL commands in the application database. (more…)