Nine Popular WordPress plugins affected with critical SQL injection vulnerabilities

SQL injection vulnerabilities are identified in nine popular WordPress plugins, and each is found to have a different kind of SQL injection vulnerability.

Categories such as advertisements, donation, gallery, newsletter, etc., were the areas said to have been affected with the said vulnerability. Many of the website owners have also rated these plugins to the top position in the categories to which they belong.

The vulnerabilities were discovered by security researchers from Fortinet’s FortiGuard Labs and were made public in a detailed report. All the identified vulnerabilities were assigned with a FortiGuard Labs CVE identity.

The CVE ID with respect to the nine identified vulnerabilities are : CVE-2019-13570, CVE-2019-13572, CVE-2019-13569, CVE-2019-13575, CVE-2019-13573, CVE-2019-13578, CVE-2019-14314, CVE-2019-14313 and CVE-2019-14695.

FortiGuard rated all the listed vulnerabilities with a Base Score of 9.0 and mentioned that they fall under critical severity.