CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2013-6243

HIGH
7.5
CVSS Severity Score
EPSS Score0.0340%
EPSS Percentile33.69th
Published2013年10月23日
Last Modified2026年4月29日

Vulnerability Description

SQL injection vulnerability in the Landing Pages plugin 1.2.3, before 20131009, and earlier for WordPress allows remote attackers to execute arbitrary SQL commands via the "post" parameter to index.php.

Affected Platforms (CPE)

📦
Landing Pages Project

Landing Pages Plugin

<= 1.2.3
📦
Landing Pages Project

Landing Pages Plugin

= 1.0.3.7
📦
Landing Pages Project

Landing Pages Plugin

= 1.0.3.8
📦
Landing Pages Project

Landing Pages Plugin

= 1.0.3.9
📦
Landing Pages Project

Landing Pages Plugin

= 1.0.4.1
📦
Landing Pages Project

Landing Pages Plugin

= 1.0.4.2
📦
Landing Pages Project

Landing Pages Plugin

= 1.0.4.4
📦
Landing Pages Project

Landing Pages Plugin

= 1.0.5.1
📦
Landing Pages Project

Landing Pages Plugin

= 1.0.5.3
📦
Landing Pages Project

Landing Pages Plugin

= 1.0.5.6
📦
Landing Pages Project

Landing Pages Plugin

= 1.0.7.1
📦
Landing Pages Project

Landing Pages Plugin

= 1.0.7.3
📦
Landing Pages Project

Landing Pages Plugin

= 1.0.7.9
📦
Landing Pages Project

Landing Pages Plugin

= 1.0.8.1
📦
Landing Pages Project

Landing Pages Plugin

= 1.0.8.4
📦
Landing Pages Project

Landing Pages Plugin

= 1.0.8.5
📦
Landing Pages Project

Landing Pages Plugin

= 1.0.8.6
📦
Landing Pages Project

Landing Pages Plugin

= 1.0.9.0
📦
Landing Pages Project

Landing Pages Plugin

= 1.0.9.3
📦
Landing Pages Project

Landing Pages Plugin

= 1.0.9.4
📦
Landing Pages Project

Landing Pages Plugin

= 1.0.9.9
📦
Landing Pages Project

Landing Pages Plugin

= 1.1
📦
Landing Pages Project

Landing Pages Plugin

= 1.1.0.1
📦
Landing Pages Project

Landing Pages Plugin

= 1.1.7
📦
Landing Pages Project

Landing Pages Plugin

= 1.1.8
📦
Landing Pages Project

Landing Pages Plugin

= 1.1.9
📦
Landing Pages Project

Landing Pages Plugin

= 1.2.1

References & Advisories

🔗 http://osvdb.org/98334
🔗 http://plugins.trac.wordpress.org/changeset?reponame=&old=785535%40landing-pages&new=785535%40landing-pages
🔗 http://secunia.com/advisories/55192
🔗 http://wordpress.org/plugins/landing-pages/changelog
🔗 http://www.securityfocus.com/bid/62942
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/87803
🔗 http://osvdb.org/98334
🔗 http://plugins.trac.wordpress.org/changeset?reponame=&old=785535%40landing-pages&new=785535%40landing-pages

相關漏洞威脅

CVE-2015-52278.8

The Landing Pages plugin before 1.9.2 for WordPress allows remote attackers to execute arbitrary code via the url parameter.

CVE-2015-40646.5

SQL injection vulnerability in modules/module.ab-testing.php in the Landing Pages plugin before 1.8.5 for WordPress allows remote ...

CVE-2021-250675.4

The Landing Page Builder WordPress plugin before 1.4.9.6 was affected by a reflected XSS in page-builder-add on the ulpb_post admi...

CVE-2015-40653.5

Cross-site scripting (XSS) vulnerability in shared/shortcodes/inbound-shortcodes.php in the Landing Pages plugin before 1.8.5 for ...