Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in GamiPress – The most flexible and powerful gamification plugin for WordPress 2.5.7

  • Severity: critical
  • Status: Fixed
  • Publication: February 14, 2023

The GamiPress plugin for WordPress is not secure in versions up to 2.5.7. This is because it does not properly protect user data from being used by unauthenticated attackers. This means that an attacker can access sensitive information from the database by adding extra SQL queries to the existing ones.

Detected in:

GamiPress – Gamification plugin to reward points, achievements, badges & ranks in WordPress fixed vulnerable versions:
GamiPress – The #1 gamification plugin to reward points, achievements, badges & ranks in WordPress fixed vulnerable versions:
GamiPress – The most flexible and powerful gamification plugin for WordPress fixed vulnerable versions: >= * <= 2.5.7

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.