Back to Codebase

Vulnerability Analysis Report

WordPress Core v2.7.1

Scan ID: SCAN-WORDPRESS-CORE-7LeWvI • Hash: afd48367

Severity Score
High
Total Findings
5
Engine Version
ECOMGUARD-HYBRID-AST-1.5
Scan Duration
1.175s

Vulnerability Details

L55

Potential SQL Injection in admin-ajax.php

CWE-89
File Location: wp-admin/admin-ajax.php:55
Security Score:
94 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $results = $wpdb->get_col( "SELECT t.name FROM $wpdb->term_taxonomy AS tt INNER JOIN $wpdb->terms AS t ON tt.term_id = t.term_id WHERE tt.taxonomy = 'post_tag' AND t.name LIKE ('%". $s . "%')" );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L999

Potential SQL Injection in admin-ajax.php

CWE-89
File Location: wp-admin/admin-ajax.php:999
Security Score:
92 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $posts = $wpdb->get_results( "SELECT ID, post_title, post_status, post_date FROM $wpdb->posts WHERE post_type = '$what' AND $search ORDER BY post_date_gmt DESC LIMIT 50" );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L22

Potential SQL Injection in edit-comments.php

CWE-89
File Location: wp-admin/edit-comments.php:22
Security Score:
89 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $deleted_spam = $wpdb->query( "DELETE FROM $wpdb->comments WHERE comment_approved = 'spam' AND '$delete_time' > comment_date_gmt" );
+ $wpdb->query($wpdb->prepare("SELECT ... WHERE field = %s", $variable));
L518

Cross-Site Scripting (XSS) in edit-form-advanced.php

CWE-79
File Location: wp-admin/edit-form-advanced.php:518
Security Score:
89 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- <div id="message" class="updated fade"><p><?php echo $messages[$_GET['message']]; ?></p></div>
+ echo esc_html($messages[$_GET['message']]);
L168

Cross-Site Scripting (XSS) in edit-form-advanced.php

CWE-79
File Location: wp-admin/edit-form-advanced.php:168
Security Score:
88 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- <input type="hidden" name="hidden_post_password" id="hidden-post-password" value="<?php echo attribute_escape($post->post_password); ?>" />
+ echo esc_html(attribute_escape($post->post_password));