CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Andrew Charlton: >> My Category Order Security Vulnerabilities

CVE-2009-4748

SQL injection vulnerability in mycategoryorder.php in the My Category Order plugin 2.8 and earlier for WordPress allows remote attackers to execute arbitrary SQL commands via the parentID parameter in an act_OrderCategories action to wp-admin/post-new.php.

CVSS Score

7.5

EPSS Score

0.005

Published

2010-03-26

Page 1

Vulnerabilities

Vulnerable Software

Andrew Charlton: >> My Category Order Security Vulnerabilities

Products

Pricing

Contact Us