WordPress < 188.8.131.52 XMLRPC SQL Injection
High Nessus Plugin ID 18601
SynopsisThe remote web server contains a PHP application that is affected by a SQL injection vulnerability.
DescriptionThe version of WordPress installed on the remote host is affected by a SQL injection vulnerability because the bundled XML-RPC library fails to properly sanitize user-supplied input to the 'xmlrpc.php' script.
An attacker can exploit this flaw to launch SQL injection attacks that could lead to disclosure of the administrator's password hash or attacks against the underlying database.
Note that the application is reportedly also affected by multiple cross-site scripting (XSS) vulnerabilities, multiple path disclosure vulnerabilities, and a flaw in which a remote attacker can modify the content of the 'forgotten password' message; however, Nessus has not tested for these issues.
SolutionUpgrade to WordPress version 184.108.40.206 or later.