Title: SQL Injection vunerability
Last modified: April 7, 2023

---

# SQL Injection vunerability

 *  [bokibe](https://wordpress.org/support/users/bokibe/)
 * (@bokibe)
 * [3 years, 2 months ago](https://wordpress.org/support/topic/sql-injection-vunerability-3/)
 * To hijiri,
 * I found 2 places where the vulnerability could come from. These 2 blocks where
   added since version 3.1.3
   line 390 => // same number checkline 458 => // same
   number check
 * Can you please fix this because I can’t find another plugin that works as good
   as yours. Maybe I can pay for your work. Let me know.
    -  This topic was modified 3 years, 2 months ago by [Jan Dembowski](https://wordpress.org/support/users/jdembowski/).
    -  This topic was modified 3 years, 2 months ago by [Jan Dembowski](https://wordpress.org/support/users/jdembowski/).
      Reason: Needless link removed

Viewing 2 replies - 1 through 2 (of 2 total)

 *  [betagoo](https://wordpress.org/support/users/betagoo/)
 * (@betagoo)
 * [3 years ago](https://wordpress.org/support/topic/sql-injection-vunerability-3/#post-16728674)
 * Intuitive Custom Post Order &lt;= 3.1.3 – Authenticated (Admin+) SQL Injection:
 * [https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/intuitive-custom-post-order/intuitive-custom-post-order-313-authenticated-admin-sql-injection](https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/intuitive-custom-post-order/intuitive-custom-post-order-313-authenticated-admin-sql-injection)
 *  [daviddesign](https://wordpress.org/support/users/daviddesign/)
 * (@daviddesign)
 * [3 years ago](https://wordpress.org/support/topic/sql-injection-vunerability-3/#post-16784913)
 * I got a similar notification from my security plugin. Please address this vulnerability.

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘SQL Injection vunerability’ is closed to new replies.

 * ![](https://ps.w.org/intuitive-custom-post-order/assets/icon-256x256.png?rev=
   1078797)
 * [Intuitive Custom Post Order](https://wordpress.org/plugins/intuitive-custom-post-order/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/intuitive-custom-post-order/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/intuitive-custom-post-order/)
 * [Active Topics](https://wordpress.org/support/plugin/intuitive-custom-post-order/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/intuitive-custom-post-order/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/intuitive-custom-post-order/reviews/)

 * 4 replies
 * 3 participants
 * Last reply from: [daviddesign](https://wordpress.org/support/users/daviddesign/)
 * Last activity: [3 years ago](https://wordpress.org/support/topic/sql-injection-vunerability-3/#post-16784913)
 * Status: not resolved