CVE-2007-3140

SQL injection vulnerability in xmlrpc.php in WordPress 2.2 allows remote authenticated users to execute arbitrary SQL commands via a parameter value in an XML RPC wp.suggestCategories methodCall, a different vector than CVE-2007-1897.

Date published : 2007-06-08

http://www.securityfocus.com/bid/24344

https://www.exploit-db.com/exploits/4039