{"id":"CVE-2007-3140","details":"SQL injection vulnerability in xmlrpc.php in WordPress 2.2 allows remote authenticated users to execute arbitrary SQL commands via a parameter value in an XML RPC wp.suggestCategories methodCall, a different vector than CVE-2007-1897.","modified":"2025-08-09T19:01:27Z","published":"2007-06-08T16:30:00Z","references":[{"type":"ADVISORY","url":"http://secunia.com/advisories/25552"},{"type":"ADVISORY","url":"http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.021.html"},{"type":"ADVISORY","url":"http://www.vupen.com/english/advisories/2007/2099"},{"type":"WEB","url":"http://osvdb.org/36321"},{"type":"WEB","url":"http://www.securityfocus.com/bid/24344"},{"type":"WEB","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/34746"},{"type":"WEB","url":"https://www.exploit-db.com/exploits/4039"}],"schema_version":"1.7.3"}