🧹It's time for some spring cleaning! All researchers earn over 6.25x our normal bounty rates, through May 27th, 2024, when Wordfence handles responsible disclosure for our Spring Cleaning Bug Extravaganza! Learn more about our bug bounty program
Register as a researcher and submit your vulnerabilities today!

Vulnerabilities protected by our SQL Injection firewall rule

2,467,004

Attacks Blocked in Past 24 Hours

Showing 1181-1200 of 1,290 Vulnerabilities

Unite Gallery Lite < 1.5 - Cross-Site Request Forgery and SQL Injection

7.2

CVE-2015-9447

Jul 25, 2015

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Easy Social Icons <= 1.2.3.1 - SQL Injection

7.2

CVE ID Unknown

Jul 22, 2015

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Microblog Poster < 1.6.2 - Authenticated Blind SQL Injection

7.2

CVE-2015-9449

Jul 22, 2015

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CP Contact Form with PayPal < 1.1.6 - SQL Injection

7.2

CVE-2015-9234

Jul 9, 2015

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Pretty Links – Link Management, Branding, Tracking & Sharing Plugin <= 1.6.7 - SQL Injection

7.2

CVE-2015-9457

Jul 8, 2015

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

SEO SearchTerms Tagging 2 <=1.535 - SQL Injection

7.2

CVE-2015-9458

Jul 8, 2015

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

WDContactFormBuilder <= 1.0.24 - Authenticated Blind SQL Injection

7.2

CVE ID Unknown

Jul 7, 2015

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Awesome Filterable Portfolio < 1.9 - Blind SQL Injection

7.2

CVE-2015-9462

Jul 7, 2015

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Awesome Filterable Portfolio < 1.9 - Blind SQL Injection

7.2

CVE-2015-9461

Jul 7, 2015

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Visual Form Builder <= 2.8.2 - Authenticated SQL Injection

7.2

CVE ID Unknown

May 15, 2015

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Users Ultra Membership, Users Community and Member Profiles With PayPal Integration Plugin <= 1.4.95 - SQL Injection

7.2

CVE ID Unknown

Apr 17, 2015

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Responsive Slider – Image Slider – Slideshow for WordPress < 2.7.0 - Authenticated (Admin+) SQL Injection

7.2

CVE-2015-2062

Mar 12, 2015

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

NextGEN Gallery Voting <= 2.7.5 - Authenticated (Admin+) SQL Injection

7.2

CVE ID Unknown

Dec 17, 2014

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Content Audit <= 1.6.0 - Authenticated (Admin+) SQL Injection

7.2

CVE-2014-5389

Oct 1, 2014

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

WP Easy Gallery <= 2.7 - SQL Injection

7.2

CVE ID Unknown

Aug 1, 2014

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

WP Easy Gallery <= 2.7 - SQL Injection

7.2

CVE ID Unknown

Aug 1, 2014

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

ENL Newsletter <= 1.0.1 - Authenticated (Admin+) SQL Injection

7.2

CVE-2014-4939

May 28, 2014

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

stripShow Plugin <= 2.5.2 - SQL Injection

7.2

CVE-2014-5184

May 28, 2014

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Ultimate Product Catalog < 2.1.1 - Authenticated (Admin+) SQL Injection

7.2

CVE ID Unknown

May 28, 2014

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

All Video Gallery Plugin for WordPress <= 1.2 - Authenticated SQL Injection

7.2

CVE-2014-5186

May 28, 2014

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Title	CVE ID	CVSS	Vector	Date
Unite Gallery Lite < 1.5 - Cross-Site Request Forgery and SQL Injection	CVE-2015-9447	7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	July 25, 2015
Easy Social Icons <= 1.2.3.1 - SQL Injection		7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	July 22, 2015
Microblog Poster < 1.6.2 - Authenticated Blind SQL Injection	CVE-2015-9449	7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	July 22, 2015
CP Contact Form with PayPal < 1.1.6 - SQL Injection	CVE-2015-9234	7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	July 9, 2015
Pretty Links – Link Management, Branding, Tracking & Sharing Plugin <= 1.6.7 - SQL Injection	CVE-2015-9457	7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	July 8, 2015
SEO SearchTerms Tagging 2 <=1.535 - SQL Injection	CVE-2015-9458	7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	July 8, 2015
WDContactFormBuilder <= 1.0.24 - Authenticated Blind SQL Injection		7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	July 7, 2015
Awesome Filterable Portfolio < 1.9 - Blind SQL Injection	CVE-2015-9462	7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	July 7, 2015
Awesome Filterable Portfolio < 1.9 - Blind SQL Injection	CVE-2015-9461	7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	July 7, 2015
Visual Form Builder <= 2.8.2 - Authenticated SQL Injection		7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	May 15, 2015
Users Ultra Membership, Users Community and Member Profiles With PayPal Integration Plugin <= 1.4.95 - SQL Injection		7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	April 17, 2015
Responsive Slider – Image Slider – Slideshow for WordPress < 2.7.0 - Authenticated (Admin+) SQL Injection	CVE-2015-2062	7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	March 12, 2015
NextGEN Gallery Voting <= 2.7.5 - Authenticated (Admin+) SQL Injection		7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	December 17, 2014
Content Audit <= 1.6.0 - Authenticated (Admin+) SQL Injection	CVE-2014-5389	7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	October 1, 2014
WP Easy Gallery <= 2.7 - SQL Injection		7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	August 1, 2014
WP Easy Gallery <= 2.7 - SQL Injection		7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	August 1, 2014
ENL Newsletter <= 1.0.1 - Authenticated (Admin+) SQL Injection	CVE-2014-4939	7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	May 28, 2014
stripShow Plugin <= 2.5.2 - SQL Injection	CVE-2014-5184	7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	May 28, 2014
Ultimate Product Catalog < 2.1.1 - Authenticated (Admin+) SQL Injection		7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	May 28, 2014
All Video Gallery Plugin for WordPress <= 1.2 - Authenticated SQL Injection	CVE-2014-5186	7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	May 28, 2014

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation