wordpress -- remote sql injection vulnerability
Alexander Concha reports:
While testing WordPress, it has been discovered a SQL
Injection vulnerability that allows an attacker to retrieve
remotely any user credentials from a vulnerable site, this
bug is caused because of early database escaping and the
lack of validation in query string like parameters.
Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright