LiveActive security incident?Get immediate response
CVE Record

CVE-2015-9335: The limit-attempts plugin before 1.1.1 for WordPress has SQL injection during IP address handling.

The limit-attempts plugin before 1.1.1 for WordPress has SQL injection during IP address handling.

UnknownCVSS not scoredNot KEV-listedUpdated
Glexia's TakeAutomated analysisunknown

Security readout for executives and security teams

Plain-English summary

CVE-2015-9335 affects the WordPress limit-attempts plugin before version 1.1.1. The public record says IP address handling could allow SQL injection. Business risk depends on whether the plugin is installed and reachable; the sources do not provide severity, CVSS, impact detail, or confirmed exploitation.

Executive priority

Treat this as a targeted WordPress plugin exposure check rather than a broad emergency. If the plugin is present below 1.1.1 on a public site, prioritize remediation because SQL injection may affect data integrity or confidentiality.

Technical view

The vulnerability is described as SQL injection in IP address handling in limit-attempts versions before 1.1.1 for WordPress. Available sources do not specify the vulnerable parameter, required privileges, exploit preconditions, database impact, or fixed-code details.

Likely exposure

Exposure is likely limited to WordPress sites that installed the limit-attempts plugin before 1.1.1 and still run it. The provided sources do not identify affected CPEs, hosting configurations, or whether default installations are exposed.

Exploitation context

The CVE is not listed as CISA KEV in the bundle, and no cited source confirms active exploitation. SQL injection can be serious, but this record lacks evidence on exploitability, authentication requirements, or real-world abuse.

Researcher notes

Evidence is sparse. The record states SQL injection during IP address handling but omits CVSS, CWE, vulnerable input details, exploit maturity, and remediation specifics beyond the before-1.1.1 version boundary. Avoid assuming impact without local testing or vendor detail.

Mitigation direction

  • Inventory WordPress sites for the limit-attempts plugin and record installed versions.
  • Upgrade any version before 1.1.1, or follow current WordPress plugin guidance.
  • Remove or replace the plugin if a maintained fixed version is unavailable.
  • Prioritize internet-facing WordPress sites and business-critical properties first.

Validation and detection

  • Confirm plugin presence and version from WordPress administration or deployment inventory.
  • Check the WordPress plugin developer page for version history and current maintenance status.
  • Review application and database logs for SQL errors tied to plugin activity.
  • Document whether each WordPress site is affected, fixed, removed, or not applicable.
Prepared
Confidence
medium
Sources
3

Generated from the cited source records. This long-tail analysis has not been individually reviewed by a named human.

Potential ATT&CK relevance

Conservative CVE-to-ATT&CK context

These mappings and lookup hints may be relevant to the vulnerability behavior, CWE, affected product, or exposure path. Glexia-inferred context is not an official MITRE, ATT&CK, CWE, or CVE Program mapping.

ATT&CK lookup starting points

Use these exact CWE pages and searches to review the Glexia ATT&CK library from this CVE's weakness and description context.

description · low confidence lookup

Database behavior lookup

The CVE wording references database injection or access, so collection and exfiltration review may help. This is a Glexia inferred lookup path, not an official MITRE, ATT&CK, or CVE Program mapping.

Open ATT&CK lookup
cve · low confidence lookup

CVE-2015-9335 mapping review

Open the CVE-to-ATT&CK bridge for reviewed, inferred, or future official mappings tied to this CVE.

Open ATT&CK lookup
Vulnerability profileCVE Program record
Severity
Unknown
CVSS
Not scored
Known Exploited
No
Published
Official CVE source material

CNA and ADP enrichment extracted from CVE v5

These fields come from the CVE record and ADP containers, not from Glexia's Take. They preserve time-varying source decisions such as CISA SSVC, KEV status, CVSS metrics, and provider references.

0CVSS vectors
0Timeline events
0ADP providers
2Source links

CVSS and timeline data

No CVSS vectors or timeline events were available in the normalized CVE source material.

Source materials

Affected products

Products and packages named in the record

VendorProductVersion / packageStatus
n/an/an/aListed
Weakness

CWE details

No CWE listed

CWE links open Glexia weakness intelligence pages with official CWE context, developer remediation guidance, and related CVE mappings.