BID:51204

WordPress Connections Plugin Unspecified Security Vulnerability

Info

WordPress Connections Plugin Unspecified Security Vulnerability

Bugtraq ID:	51204
Class:	Unknown
CVE:	CVE-2011-5254
Remote:	Yes
Local:	No
Published:	Dec 29 2011 12:00AM
Updated:	Jan 16 2013 06:00PM
Credit:	Reported by the vendor.
Vulnerable:	WordPress Connections 0

Not Vulnerable:	WordPress Connections 0.7.1.6

Discussion

WordPress Connections Plugin Unspecified Security Vulnerability

Connections Plugin for WordPress is prone to an unspecified vulnerability.

Little is known about this issue or its effects at this time. We will update this BID as more information emerges.

Connections versions prior to 0.7.1.6 are vulnerable.

Exploit / POC

WordPress Connections Plugin Unspecified Security Vulnerability

Currently, we are not aware of any exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Solution / Fix

WordPress Connections Plugin Unspecified Security Vulnerability

Solution:
The vendor has released fixes. Please see the references for details.

References

WordPress Connections Plugin Unspecified Security Vulnerability

References:

Connections Plugin Download Page (WordPress)