Jump to content

Wordpress "cat_id" Sql Injection Vulnerability


TCH-Thomas
 Share

Recommended Posts

Secunia writes...

Description:

A vulnerability has been reported in WordPress, which can be exploited by malicious people to conduct SQL injection attacks.

 

Input passed to the "cat_ID" parameter isn't properly sanitised before being used in a SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.

 

The vulnerability has been reported in version 1.5. Other versions may also be affected.

 

Solution:

Update to version 1.5.1.2.

http://wordpress.org/download/

Link to comment
Share on other sites

Well, now I guess I better find time to upgrade.  Thanks Thomas.  :P

 

They have instructions at the site for adding one line to one file, as an alternate to downloading and upgrading the whole package:

 

  1.  Open the wp-includes/template-functions-category.php file in a text editor like Wordpad.

  2. Go to around line 103 where it says get_the_category_by_ID.

  3. Create a new line after that and paste in $cat_ID = (int) $cat_ID;

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

 Share

×
×
  • Create New...