Jump to content

Wordpress "cat_id" Sql Injection Vulnerability

TCH-Thomas

By TCH-Thomas
in WordPress

 Share

Recommended Posts

TCH-Thomas Grand Master

TCH-Thomas

Posted
Posted

Secunia writes...

Description:

A vulnerability has been reported in WordPress, which can be exploited by malicious people to conduct SQL injection attacks.

 

Input passed to the "cat_ID" parameter isn't properly sanitised before being used in a SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.

 

The vulnerability has been reported in version 1.5. Other versions may also be affected.

 

Solution:

Update to version 1.5.1.2.

http://wordpress.org/download/

John Carney Explorer

John Carney

Posted
Posted
Well, now I guess I better find time to upgrade.  Thanks Thomas.  :P

 

They have instructions at the site for adding one line to one file, as an alternate to downloading and upgrading the whole package:

 

  1.  Open the wp-includes/template-functions-category.php file in a text editor like Wordpad.

  2. Go to around line 103 where it says get_the_category_by_ID.

  3. Create a new line after that and paste in $cat_ID = (int) $cat_ID;

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Unfortunately, your content contains terms that we do not allow. Please edit your content to remove the highlighted words below.
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing
×
×
  • Create New...