Unrated severityNVD Advisory· Published Dec 2, 2011· Updated Jun 16, 2026
CVE-2011-4669
CVE-2011-4669
Description
SQL injection vulnerability in wp-users.php in WordPress Users plugin 1.3 and possibly earlier for WordPress allows remote attackers to execute arbitrary SQL commands via the uid parameter to index.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7cpe:2.3:a:wordpress:wordpress-users:*:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:wordpress:wordpress-users:*:*:*:*:*:*:*:*range: <=1.3
- cpe:2.3:a:wordpress:wordpress-users:0.2:*:*:*:*:*:*:*
- cpe:2.3:a:wordpress:wordpress-users:0.9:*:*:*:*:*:*:*
- cpe:2.3:a:wordpress:wordpress-users:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:wordpress:wordpress-users:1.1:*:*:*:*:*:*:*
- cpe:2.3:a:wordpress:wordpress-users:1.2:*:*:*:*:*:*:*
- (no CPE)range: <=1.3
Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.