myLinksDump WordPress Plugin SQL Injection Vulnerability

A SQL injection vulnerability has been identified in the myLinksDump plugin for WordPress, affecting all versions through 1.6. The issue arises from inadequate escaping of user-supplied parameters in the SQL query, specifically the 'sort_by' and 'sort_order' parameters. This vulnerability allows authenticated attackers with administrator-level access to inject additional SQL queries, potentially leading to the extraction of sensitive information from the database.

Impact

Exploitation of this vulnerability allows for SQL injection, where an attacker can manipulate SQL queries to access or modify database information. In this case, it could be used to extract sensitive data from the database.

Reproduction

To reproduce this vulnerability, an authenticated user with administrator privileges can send a request to the WordPress site with the 'sort_by' and 'sort_order' parameters. The lack of proper input validation and query preparation will allow the injected SQL to be executed, demonstrating the SQL injection vulnerability.

Remediation

No known patch is available for this vulnerability. It is recommended to uninstall the affected plugin and find a replacement.