Aaron Campbell

7 exploits Active since Jan 2017
CVE-2017-14723 WRITEUP CRITICAL WRITEUP
WordPress < 4.8.2 - SQL Injection via $wpdb->prepare Placeholder Mishandling
Before version 4.8.2, WordPress mishandled % characters and additional placeholder values in $wpdb->prepare, and thus did not properly address the possibility of plugins and themes enabling SQL injection attacks.
CVSS 9.8
CVE-2017-5487 WRITEUP MEDIUM WRITEUP
WordPress < 4.7.1 - Unauthorized User Information Exposure via REST API
wp-includes/rest-api/endpoints/class-wp-rest-users-controller.php in the REST API implementation in WordPress 4.7 before 4.7.1 does not properly restrict listings of post authors, which allows remote attackers to obtain sensitive information via a wp-json/wp/v2/users request.
CVSS 5.3
CVE-2017-14723 WRITEUP CRITICAL WRITEUP
WordPress < 4.8.2 - SQL Injection via $wpdb->prepare Placeholder Mishandling
Before version 4.8.2, WordPress mishandled % characters and additional placeholder values in $wpdb->prepare, and thus did not properly address the possibility of plugins and themes enabling SQL injection attacks.
CVSS 9.8
CVE-2017-5492 WRITEUP HIGH WRITEUP
WordPress < 4.7.1 - Cross-Site Request Forgery in Widget-Editing Accessibility Mode
Cross-site request forgery (CSRF) vulnerability in the widget-editing accessibility-mode feature in WordPress before 4.7.1 allows remote attackers to hijack the authentication of unspecified victims for requests that perform a widgets-access action, related to wp-admin/includes/class-wp-screen.php and wp-admin/widgets.php.
CVSS 8.8
CVE-2017-6815 WRITEUP MEDIUM WRITEUP
WordPress < 4.7.3 - URL Validation Bypass via Control Characters
In WordPress before 4.7.3 (wp-includes/pluggable.php), control characters can trick redirect URL validation.
CVSS 6.1
CVE-2017-6816 WRITEUP MEDIUM WRITEUP
WordPress < 4.7.3 - Unintended File Deletion via Plugin Deletion Functionality
In WordPress before 4.7.3 (wp-admin/plugins.php), unintended files can be deleted by administrators using the plugin deletion functionality.
CVSS 4.9
CVE-2017-9064 WRITEUP HIGH WRITEUP
WordPress < 4.7.5 - Cross-Site Request Forgery in Filesystem Credentials Dialog
In WordPress before 4.7.5, a Cross Site Request Forgery (CSRF) vulnerability exists in the filesystem credentials dialog because a nonce is not required for updating credentials.
CVSS 8.8