7.5
CVSSv2

CVE-2005-1810

Published: 01/06/2005 Updated: 18/10/2016
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Summary

SQL injection vulnerability in template-functions-category.php in WordPress 1.5.1 allows remote malicious users to execute arbitrary SQL commands via the $cat_ID variable, as demonstrated using the cat parameter to index.php.

Affected Products

Vendor Product Versions
WordpressWordpress1.5.1