Arbitrary SQL Command Execution Vulnerability in WordPress Spreadsheet (wpSS) Plugin 0.62

Arbitrary SQL Command Execution Vulnerability in WordPress Spreadsheet (wpSS) Plugin 0.62

CVE-2014-8363 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in ss_handler.php in the WordPress Spreadsheet (wpSS) plugin 0.62 for WordPress allows remote attackers to execute arbitrary SQL commands via the ss_id parameter.

Learn more about our Wordpress Pen Testing.