CVE-2011-5286

Social Slider < 7.4.0 - SQL Injection

Title source: rule

Description

SQL injection vulnerability in social-slider-2/ajax.php in the Social Slider plugin before 7.4.2 for WordPress allows remote attackers to execute arbitrary SQL commands via the rA array parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Miroslav Stampar · textwebappsphp

https://www.exploit-db.com/exploits/17617

View Code ZIP pw:eip

References (1)

Core 1

Core References

Exploit x_refsource_misc

https://www.htbridge.com/advisory/HTB23033

Scores

EPSS 0.0350

EPSS Percentile 87.7%

Details

CWE

CWE-89

Status published

Products (1)

social_slider_project/social_slider < 7.4.0

Published Jan 01, 2015

Tracked Since Feb 18, 2026