CyberSec.Space Logo
Back to CVE Browser

CVE-2013-6243

HIGH
7.5
CVSS Severity Score
EPSS Score0.0340%
EPSS Percentile33.69th
PublishedOct 23, 2013
Last ModifiedApr 29, 2026

Vulnerability Description

SQL injection vulnerability in the Landing Pages plugin 1.2.3, before 20131009, and earlier for WordPress allows remote attackers to execute arbitrary SQL commands via the "post" parameter to index.php.

Affected Platforms (CPE)

πŸ“¦
Landing Pages Project

Landing Pages Plugin

<= 1.2.3
πŸ“¦
Landing Pages Project

Landing Pages Plugin

= 1.0.3.7
πŸ“¦
Landing Pages Project

Landing Pages Plugin

= 1.0.3.8
πŸ“¦
Landing Pages Project

Landing Pages Plugin

= 1.0.3.9
πŸ“¦
Landing Pages Project

Landing Pages Plugin

= 1.0.4.1
πŸ“¦
Landing Pages Project

Landing Pages Plugin

= 1.0.4.2
πŸ“¦
Landing Pages Project

Landing Pages Plugin

= 1.0.4.4
πŸ“¦
Landing Pages Project

Landing Pages Plugin

= 1.0.5.1
πŸ“¦
Landing Pages Project

Landing Pages Plugin

= 1.0.5.3
πŸ“¦
Landing Pages Project

Landing Pages Plugin

= 1.0.5.6
πŸ“¦
Landing Pages Project

Landing Pages Plugin

= 1.0.7.1
πŸ“¦
Landing Pages Project

Landing Pages Plugin

= 1.0.7.3
πŸ“¦
Landing Pages Project

Landing Pages Plugin

= 1.0.7.9
πŸ“¦
Landing Pages Project

Landing Pages Plugin

= 1.0.8.1
πŸ“¦
Landing Pages Project

Landing Pages Plugin

= 1.0.8.4
πŸ“¦
Landing Pages Project

Landing Pages Plugin

= 1.0.8.5
πŸ“¦
Landing Pages Project

Landing Pages Plugin

= 1.0.8.6
πŸ“¦
Landing Pages Project

Landing Pages Plugin

= 1.0.9.0
πŸ“¦
Landing Pages Project

Landing Pages Plugin

= 1.0.9.3
πŸ“¦
Landing Pages Project

Landing Pages Plugin

= 1.0.9.4
πŸ“¦
Landing Pages Project

Landing Pages Plugin

= 1.0.9.9
πŸ“¦
Landing Pages Project

Landing Pages Plugin

= 1.1
πŸ“¦
Landing Pages Project

Landing Pages Plugin

= 1.1.0.1
πŸ“¦
Landing Pages Project

Landing Pages Plugin

= 1.1.7
πŸ“¦
Landing Pages Project

Landing Pages Plugin

= 1.1.8
πŸ“¦
Landing Pages Project

Landing Pages Plugin

= 1.1.9
πŸ“¦
Landing Pages Project

Landing Pages Plugin

= 1.2.1

References & Advisories

πŸ”— http://osvdb.org/98334
πŸ”— http://plugins.trac.wordpress.org/changeset?reponame=&old=785535%40landing-pages&new=785535%40landing-pages
πŸ”— http://secunia.com/advisories/55192
πŸ”— http://wordpress.org/plugins/landing-pages/changelog
πŸ”— http://www.securityfocus.com/bid/62942
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/87803
πŸ”— http://osvdb.org/98334
πŸ”— http://plugins.trac.wordpress.org/changeset?reponame=&old=785535%40landing-pages&new=785535%40landing-pages

Related Vulnerabilities

CVE-2015-52278.8

The Landing Pages plugin before 1.9.2 for WordPress allows remote attackers to execute arbitrary code via the url parameter.

CVE-2015-40646.5

SQL injection vulnerability in modules/module.ab-testing.php in the Landing Pages plugin before 1.8.5 for WordPress allows remote ...

CVE-2021-250675.4

The Landing Page Builder WordPress plugin before 1.4.9.6 was affected by a reflected XSS in page-builder-add on the ulpb_post admi...

CVE-2015-40653.5

Cross-site scripting (XSS) vulnerability in shared/shortcodes/inbound-shortcodes.php in the Landing Pages plugin before 1.8.5 for ...