Log out
Get PRO

Latest

Input validation vulnerability in WP Adminify – WordPress Dashboard Customization | Custom Login | Admin Columns | Dashboard Widget | Media Library Folders 3.1.7

  • Severity: medium-risk
  • Status: Fixed
  • Publication: December 28, 2023

The WP Adminify plugin for WordPress is vulnerable to a security issue called SQL Injection. This affects all versions of the plugin up to 3.1.7. This vulnerability allows someone with administrator access to the WordPress website to access sensitive information from the database. The vulnerability occurs because of a lack of security when dealing with user supplied parameters and a lack of preparation for existing SQL queries.

Detected in:

WP Adminify – Best WordPress Custom Dashboard Plugin fixed vulnerable versions:
WP Adminify – Custom WordPress Dashboard, Login and Admin Customizer fixed vulnerable versions:
WP Adminify – WordPress Custom Dashboard | Custom Login | Admin Columns | Dashboard Widget | Media Folders fixed vulnerable versions:
WP Adminify – WordPress Dashboard Customization | Custom Login | Admin Columns | Dashboard Widget | Media Library Folders fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.