Unrated severityNVD Advisory· Published May 10, 2013· Updated Apr 29, 2026

CVE-2013-3532

Description

SQL injection vulnerability in settings.php in the Web Dorado Spider Video Player plugin 2.1 for WordPress allows remote attackers to execute arbitrary SQL commands via the theme parameter.

Affected products

Webdorado/Spider Video Player
cpe:2.3:a:webdorado:spider_video_player:2.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

packetstormsecurity.com/files/121250/WordPress-Spider-Video-Player-2.1-SQL-Injection.htmlnvdExploit
packetstormsecurity.com/files/128851/WordPress-HTML5-Flash-Player-SQL-Injection.htmlnvdExploit
www.securityfocus.com/bid/59021nvdExploit
www.securityfocus.com/bid/70763nvdExploit
osvdb.org/92264nvd
exchange.xforce.ibmcloud.com/vulnerabilities/83374nvd
exchange.xforce.ibmcloud.com/vulnerabilities/98332nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.003
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000