CVE-2015-2213 : SQL injection vulnerability in the wp_untrash_post

SQL injection vulnerability in the wp_untrash_post_comments function in wp-includes/post.php in WordPress before 4.2.4 allows remote attackers to execute arbitrary SQL commands via a comment that is mishandled after retrieval from the trash.

Published 2015-11-09 11:59:00

Updated 2025-04-12 10:46:41

Source MITRE

View at NVD, CVE.org

Vulnerability category: Sql Injection

Products affected by CVE-2015-2213

Wordpress » Wordpress
Versions up to, including, (<=) 4.2.3
cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*
Matching versions

Threat overview for CVE-2015-2213

Top countries where our scanners detected CVE-2015-2213

Top open port discovered on systems with this issue 80

IPs affected by CVE-2015-2213 4,884

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2015-2213!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2015-2213

EPSS FAQ

23.74%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 96 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2015-2213

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
7.5	HIGH	AV:N/AC:L/Au:N/C:P/I:P/A:P	10.0	6.4	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

CWE ids for CVE-2015-2213

CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2015-2213

http://www.securitytracker.com/id/1033178

WordPress Bugs Let Remote Users Conduct Cross-Site Scripting and SQL Injection Attacks - SecurityTracker

CVEs referencing this url
http://www.debian.org/security/2015/dsa-3332

Debian -- Security Information -- DSA-3332-1 wordpress

CVEs referencing this url
https://core.trac.wordpress.org/changeset/33555

Changeset 33555 – WordPress Trac
Patch
https://wpvulndb.com/vulnerabilities/8126

WordPress <= 4.2.3 - wp_untrash_post_comments SQL Injection
http://openwall.com/lists/oss-security/2015/08/04/7

oss-security - Re: CVE request: WordPress 4.2.3 and earlier multiple vulnerabilities

CVEs referencing this url
http://www.securityfocus.com/bid/76160

WordPress Prior to 4.2.4 Multiple Security Vulnerabilities

CVEs referencing this url
https://core.trac.wordpress.org/changeset/33556

Changeset 33556 – WordPress Trac
https://wordpress.org/news/2015/08/wordpress-4-2-4-security-and-maintenance-release/

News – WordPress 4.2.4 Security and Maintenance Release – WordPress.org
Patch;Vendor Advisory

CVEs referencing this url
https://codex.wordpress.org/Version_4.2.4

Version 4.2.4 | WordPress.org
Patch;Vendor Advisory

CVEs referencing this url
http://www.debian.org/security/2015/dsa-3383

Debian -- Security Information -- DSA-3383-1 wordpress

CVEs referencing this url