SQL injection vulnerability in template-functions-category.php in WordPress 1.5.1 allows remote malicious users to execute arbitrary SQL commands via the $cat_ID variable, as demonstrated using the cat parameter to index.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
wordpress wordpress 1.5.1 |