EIP-2026-113639
PRE-CVEWordPress Plugin Comment Rating 2.9.32 - Multiple Vulnerabilities
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-113639. PoCs published by ebanyu.
AI-analyzed exploit summary This exploit demonstrates a SQL injection vulnerability in the WordPress Comment Rating plugin (version 2.9.32) via the HTTP_X_FORWARDED_FOR header. The exploit manipulates the header to inject malicious SQL into an UPDATE query, allowing arbitrary data retrieval or manipulation.
Description
WordPress Plugin Comment Rating 2.9.32 - Multiple Vulnerabilities
Exploits (1)
This exploit demonstrates a SQL injection vulnerability in the WordPress Comment Rating plugin (version 2.9.32) via the HTTP_X_FORWARDED_FOR header. The exploit manipulates the header to inject malicious SQL into an UPDATE query, allowing arbitrary data retrieval or manipulation.