FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-09-07 09:58:36 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
63347ee7-6841-11dc-82b6-02e0185f8d72	wordpress -- remote sql injection vulnerability Alexander Concha reports: While testing WordPress, it has been discovered a SQL Injection vulnerability that allows an attacker to retrieve remotely any user credentials from a vulnerable site, this bug is caused because of early database escaping and the lack of validation in query string like parameters. Discovery 2007-09-10 Entry 2007-09-21 wordpress < 2.2.3,1 de-wordpress zh-wordpress < 2.2.3 wordpress-mu < 1.2.4,2 CVE-2007-4894 http://www.buayacorp.com/files/wordpress/wordpress-sql-injection-advisory.html

VuXML ID

Description

63347ee7-6841-11dc-82b6-02e0185f8d72

wordpress -- remote sql injection vulnerability

Alexander Concha reports:

While testing WordPress, it has been discovered a SQL Injection vulnerability that allows an attacker to retrieve remotely any user credentials from a vulnerable site, this bug is caused because of early database escaping and the lack of validation in query string like parameters.

Discovery 2007-09-10
Entry 2007-09-21
wordpress

< 2.2.3,1

de-wordpress
zh-wordpress

< 2.2.3

wordpress-mu

< 1.2.4,2

CVE-2007-4894
http://www.buayacorp.com/files/wordpress/wordpress-sql-injection-advisory.html