SQL injection vulnerability in execute.php in InfiniteWP... · CVE-2014-9520 · GitHub Advisory Database · GitHub

SQL injection vulnerability in execute.php in InfiniteWP...

High severity Unreviewed Published May 13, 2022 to the GitHub Advisory Database • Updated Apr 12, 2025

Package

No package listed— Suggest a package

Affected versions

Unknown

Patched versions

Unknown

Description

SQL injection vulnerability in execute.php in InfiniteWP Admin Panel before 2.4.4 allows remote attackers to execute arbitrary SQL commands via the historyID parameter.

References

Published by the National Vulnerability Database

Jan 5, 2015

Published to the GitHub Advisory Database May 13, 2022

Last updated Apr 12, 2025