Title: SQL injection vulnerability?
Last modified: August 20, 2016

---

# SQL injection vulnerability?

 *  Resolved [Dangthrimble](https://wordpress.org/support/users/dangthrimble/)
 * (@dangthrimble)
 * [13 years, 7 months ago](https://wordpress.org/support/topic/sql-injection-vulnerability-1/)
 * I am in the process of creating a WordPress web site including using Leaflet 
   Maps Marker which I really like. However, according to [http://thesoulofdesign.com/2012/10/leaflet-maps-marker-sqli-vulnerable-wp-plugin.html](http://thesoulofdesign.com/2012/10/leaflet-maps-marker-sqli-vulnerable-wp-plugin.html),
   Leaflet Maps Marker is vulnerable to SQL injection. Can you advise whether this
   is a true vulnerability that I need to be concerned about? Thanks.
 * [http://wordpress.org/extend/plugins/leaflet-maps-marker/](http://wordpress.org/extend/plugins/leaflet-maps-marker/)

Viewing 3 replies - 1 through 3 (of 3 total)

 *  Plugin Author [Robert Seyfriedsberger](https://wordpress.org/support/users/harmr/)
 * (@harmr)
 * [13 years, 7 months ago](https://wordpress.org/support/topic/sql-injection-vulnerability-1/#post-3144210)
 * Hi,
    v2.2 of the plugin was audited by a security company and several issues 
   were found which were all solves with v2.3. So this security warning is no longer
   valid and Maps Marker thus safe to use 🙂 regards, Robert
 * PS: as I give support for free, I’d really appreciate a vote for my plugin on
   [http://wordpress.org/extend/plugins/leaflet-maps-marker](http://wordpress.org/extend/plugins/leaflet-maps-marker)
   😉
 *  Plugin Author [Robert Seyfriedsberger](https://wordpress.org/support/users/harmr/)
 * (@harmr)
 * [13 years, 7 months ago](https://wordpress.org/support/topic/sql-injection-vulnerability-1/#post-3144214)
 * Hi again,
    checked the info page again – I am not sure to what the author is 
   referring (the old security report or a new one). According to his description
   I dont see how my plugin should be used for this kind of attack – I will contact
   him for details on how to reproduce this (my guess is still that he references
   the old security issues which already have been fixed…)
 *  Plugin Author [Robert Seyfriedsberger](https://wordpress.org/support/users/harmr/)
 * (@harmr)
 * [13 years, 7 months ago](https://wordpress.org/support/topic/sql-injection-vulnerability-1/#post-3144255)
 * Hi,
    the author just updated the info on his website – as guessed he was referring
   to security issues which were found in v2.2 and fixed with v2.3. regards, Robert

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘SQL injection vulnerability?’ is closed to new replies.

 * ![](https://ps.w.org/leaflet-maps-marker/assets/icon.svg?rev=970936)
 * [Leaflet Maps Marker (Google Maps, OpenStreetMap, Bing Maps)](https://wordpress.org/plugins/leaflet-maps-marker/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/leaflet-maps-marker/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/leaflet-maps-marker/)
 * [Active Topics](https://wordpress.org/support/plugin/leaflet-maps-marker/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/leaflet-maps-marker/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/leaflet-maps-marker/reviews/)

## Tags

 * [sql](https://wordpress.org/support/topic-tag/sql/)

 * 3 replies
 * 2 participants
 * Last reply from: [Robert Seyfriedsberger](https://wordpress.org/support/users/harmr/)
 * Last activity: [13 years, 7 months ago](https://wordpress.org/support/topic/sql-injection-vulnerability-1/#post-3144255)
 * Status: resolved