Lucene search
China National Vulnerability DatabaseCNVD-2022-19800HistoryMar 09, 2022 - 12:00 a.m.
WordPress AdRotate Plugin SQL注入漏洞
2022-03-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
0.001 Low
EPSS
Percentile
37.9%
WordPress is the Wordpress Foundation’s set of blogging platforms developed using the PHP language. A SQL injection vulnerability exists in versions of the WordPress AdRotate Plugin prior to 5.8.22. The vulnerability stems from the plugin’s failure to clean up and escape the adrotate_action parameter before using it in an SQL statement, which can be exploited by attackers to execute illegal SQL commands to steal sensitive database data.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress adrotate plugin | lt | 5.8.22 |
Related
prion
prion
Sql injection
2022-03-07 09:15:00
cve
cve
CVE-2022-0267
2022-03-07 09:15:09
nvd
nvd
CVE-2022-0267
2022-03-07 09:15:09
wpvulndb
wpvulndb
AdRotate < 5.8.22 - Admin+ SQL Injection
2022-02-07 00:00:00
wpexploit
wpexploit
AdRotate < 5.8.22 - Admin+ SQL Injection
2022-02-07 00:00:00
cvelist
cvelist
CVE-2022-0267 AdRotate < 5.8.22 - Admin+ SQL Injection
2022-03-07 08:16:24