The Companion Auto Update plugin for WordPress has a security flaw that could be exploited by someone with administrative privileges. The flaw allows for malicious code to be added to existing SQL queries, which could be used to access sensitive data from the database. All versions up to and including 3.3.5 are vulnerable.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
