Unrated severityNVD Advisory· Published Dec 2, 2014· Updated May 6, 2026
CVE-2014-9175
CVE-2014-9175
Description
SQL injection vulnerability in wpdatatables.php in the wpDataTables plugin 1.5.3 and earlier for WordPress allows remote attackers to execute arbitrary SQL commands via the table_id parameter in a get_wdtable action to wp-admin/admin-ajax.php.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- packetstormsecurity.com/files/129232/WordPress-wpDataTables-1.5.3-SQL-Injection.htmlnvdExploit
- www.exploit-db.com/exploits/35340nvdExploit
- www.homelab.it/index.php/2014/11/23/wordpress-wpdatatables-sql-injection-vulnerabilitynvdExploit
- www.securityfocus.com/bid/71271nvdExploit
- exchange.xforce.ibmcloud.com/vulnerabilities/98928nvd
News mentions
0No linked articles in our index yet.