CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Buddypress: >> Buddypress Security Vulnerabilities

CVE-2012-2109

SQL injection vulnerability in wp-load.php in the BuddyPress plugin 1.5.x before 1.5.5 of WordPress allows remote attackers to execute arbitrary SQL commands via the page parameter in an activity_widget_filter action.

CVSS Score

7.5

EPSS Score

0.029

Published

2012-09-04

Page 2

Vulnerabilities

Vulnerable Software

Buddypress: >> Buddypress Security Vulnerabilities

Products

Pricing

Contact Us