{"id":"CVE-2017-5611","details":"SQL injection vulnerability in wp-includes/class-wp-query.php in WP_Query in WordPress before 4.7.2 allows remote attackers to execute arbitrary SQL commands by leveraging the presence of an affected plugin or theme that mishandles a crafted post type name.","modified":"2026-04-02T00:12:14.039396Z","published":"2017-01-30T04:59:00.610Z","references":[{"type":"ADVISORY","url":"http://www.debian.org/security/2017/dsa-3779"},{"type":"ADVISORY","url":"http://www.securitytracker.com/id/1037731"},{"type":"ADVISORY","url":"https://codex.wordpress.org/Version_4.7.2"},{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/95816"},{"type":"ADVISORY","url":"https://www.oracle.com/security-alerts/cpujan2021.html"},{"type":"FIX","url":"https://github.com/WordPress/WordPress/commit/85384297a60900004e27e417eac56d24267054cb"},{"type":"FIX","url":"https://wordpress.org/news/2017/01/wordpress-4-7-2-security-release/"},{"type":"FIX","url":"https://wpvulndb.com/vulnerabilities/8730"},{"type":"FIX","url":"http://www.openwall.com/lists/oss-security/2017/01/28/5"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/wordpress/wordpress","events":[{"introduced":"0"},{"last_affected":"c840eb9da2ef1c7a23d3ec2d63c0d953fed56926"},{"fixed":"85384297a60900004e27e417eac56d24267054cb"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"4.7.1"}]}}],"versions":["1.5","1.5.1","1.5.1.1","1.5.1.2","1.5.1.3","1.5.2","2.0","2.0.1","2.0.10","2.0.11","2.0.2","2.0.3","2.0.4","2.0.5","2.0.6","2.0.7","2.0.8","2.0.9","2.1","2.1.1","2.1.2","2.1.3","2.2","2.2.1","2.2.2","2.2.3","2.3","2.3.1","2.3.2","2.3.3","2.5","2.5.1","2.6","2.6.1","2.6.2","2.6.3","2.6.5","2.7","2.7.1","2.8","2.8.1","2.8.2","2.8.3","2.8.4","2.8.5","2.8.6","2.9","2.9.1","2.9.2","3.0","3.0.1","3.0.2","3.0.3","3.0.4","3.0.5","3.0.6","3.1","3.1.1","3.1.2","3.1.3","3.1.4","3.2","3.2.1","3.3","3.3.1","3.3.2","3.3.3","3.4","3.4.1","3.4.2","3.5","3.5.1","3.5.2","3.6","3.6.1","3.7","3.7.1","3.7.10","3.7.11","3.7.12","3.7.13","3.7.14","3.7.15","3.7.16","3.7.17","3.7.18","3.7.19","3.7.2","3.7.20","3.7.21","3.7.22","3.7.23","3.7.24","3.7.25","3.7.26","3.7.27","3.7.28","3.7.29","3.7.3","3.7.30","3.7.31","3.7.32","3.7.33","3.7.34","3.7.35","3.7.36","3.7.37","3.7.38","3.7.39","3.7.4","3.7.40","3.7.41","3.7.5","3.7.6","3.7.7","3.7.8","3.7.9","3.8","3.8.1","3.8.10","3.8.11","3.8.12","3.8.13","3.8.14","3.8.15","3.8.16","3.8.17","3.8.18","3.8.19","3.8.2","3.8.20","3.8.21","3.8.22","3.8.23","3.8.24","3.8.25","3.8.26","3.8.27","3.8.28","3.8.29","3.8.3","3.8.30","3.8.31","3.8.32","3.8.33","3.8.34","3.8.35","3.8.36","3.8.37","3.8.38","3.8.39","3.8.4","3.8.40","3.8.41","3.8.5","3.8.6","3.8.7","3.8.8","3.8.9","3.9","3.9.1","3.9.10","3.9.11","3.9.12","3.9.13","3.9.14","3.9.15","3.9.16","3.9.17","3.9.18","3.9.19","3.9.2","3.9.20","3.9.21","3.9.22","3.9.23","3.9.24","3.9.25","3.9.26","3.9.27","3.9.28","3.9.29","3.9.3","3.9.30","3.9.31","3.9.32","3.9.33","3.9.34","3.9.35","3.9.36","3.9.37","3.9.39","3.9.4","3.9.40","3.9.5","3.9.6","3.9.7","3.9.8","3.9.9","4.0","4.0.1","4.0.10","4.0.11","4.0.12","4.0.13","4.0.14","4.0.15","4.0.16","4.0.17","4.0.18","4.0.19","4.0.2","4.0.20","4.0.21","4.0.22","4.0.23","4.0.24","4.0.25","4.0.26","4.0.27","4.0.28","4.0.29","4.0.3","4.0.30","4.0.31","4.0.32","4.0.33","4.0.34","4.0.35","4.0.36","4.0.37","4.0.38","4.0.4","4.0.5","4.0.6","4.0.7","4.0.8","4.0.9","4.1","4.1.1","4.1.10","4.1.11","4.1.12","4.1.13","4.1.14","4.1.15","4.1.16","4.1.17","4.1.18","4.1.19","4.1.2","4.1.20","4.1.21","4.1.22","4.1.23","4.1.24","4.1.25","4.1.26","4.1.27","4.1.28","4.1.29","4.1.3","4.1.30","4.1.31","4.1.32","4.1.33","4.1.34","4.1.35","4.1.36","4.1.37","4.1.38","4.1.39","4.1.4","4.1.40","4.1.41","4.1.42","4.1.5","4.1.6","4.1.7","4.1.8","4.1.9","4.2","4.2.1","4.2.10","4.2.11","4.2.12","4.2.13","4.2.14","4.2.15","4.2.16","4.2.17","4.2.18","4.2.19","4.2.2","4.2.20","4.2.21","4.2.22","4.2.23","4.2.24","4.2.25","4.2.26","4.2.27","4.2.28","4.2.29","4.2.3","4.2.30","4.2.31","4.2.32","4.2.33","4.2.34","4.2.35","4.2.36","4.2.37","4.2.38","4.2.39","4.2.4","4.2.5","4.2.6","4.2.7","4.2.8","4.2.9","4.3","4.3.1","4.3.10","4.3.11","4.3.12","4.3.13","4.3.14","4.3.15","4.3.16","4.3.17","4.3.18","4.3.19","4.3.2","4.3.20","4.3.21","4.3.22","4.3.23","4.3.24","4.3.25","4.3.26","4.3.27","4.3.28","4.3.29","4.3.3","4.3.30","4.3.31","4.3.32","4.3.33","4.3.34","4.3.35","4.3.4","4.3.5","4.3.6","4.3.7","4.3.8","4.3.9","4.4","4.4.1","4.4.10","4.4.11","4.4.12","4.4.13","4.4.14","4.4.15","4.4.16","4.4.17","4.4.18","4.4.19","4.4.2","4.4.20","4.4.21","4.4.22","4.4.23","4.4.24","4.4.25","4.4.26","4.4.27","4.4.28","4.4.29","4.4.3","4.4.30","4.4.31","4.4.32","4.4.33","4.4.34","4.4.4","4.4.5","4.4.6","4.4.7","4.4.8","4.4.9","4.5","4.5.1","4.5.10","4.5.11","4.5.12","4.5.13","4.5.14","4.5.15","4.5.16","4.5.17","4.5.18","4.5.19","4.5.2","4.5.20","4.5.21","4.5.22","4.5.23","4.5.24","4.5.25","4.5.26","4.5.27","4.5.28","4.5.29","4.5.3","4.5.30","4.5.31","4.5.32","4.5.33","4.5.4","4.5.5","4.5.6","4.5.7","4.5.8","4.5.9","4.6","4.6.1","4.6.10","4.6.11","4.6.12","4.6.13","4.6.14","4.6.15","4.6.16","4.6.17","4.6.18","4.6.19","4.6.2","4.6.20","4.6.21","4.6.22","4.6.23","4.6.24","4.6.25","4.6.26","4.6.27","4.6.28","4.6.29","4.6.3","4.6.30","4.6.4","4.6.5","4.6.6","4.6.7","4.6.8","4.6.9","4.7","4.7.1","4.7.10","4.7.11","4.7.12","4.7.13","4.7.14","4.7.15","4.7.16","4.7.17","4.7.18","4.7.19","4.7.2","4.7.20","4.7.21","4.7.22","4.7.23","4.7.24","4.7.25","4.7.26","4.7.27","4.7.28","4.7.29","4.7.3","4.7.30","4.7.31","4.7.4","4.7.5","4.7.6","4.7.7","4.7.8","4.7.9"],"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"8.0"}]},{"events":[{"introduced":"0"},{"last_affected":"9.0"}]},{"events":[{"introduced":"0"},{"last_affected":"11.1.1.9.0"}]},{"events":[{"introduced":"0"},{"last_affected":"12.2.1.3.0"}]},{"events":[{"introduced":"0"},{"last_affected":"12.2.1.4.0"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-5611.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}