Lucene search
China National Vulnerability DatabaseCNVD-2022-55729HistoryJun 15, 2022 - 12:00 a.m.
WordPress Export any WordPress data to XML/CSV plugin SQL注入漏洞
2022-06-1500:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
0.001 Low
EPSS
Percentile
37.9%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. The WordPress plugin is an application plugin. WordPress Export any WordPress data to XML/CSV plugin version 1.3.5 and earlier is vulnerable to SQL injection, which results from not cleaning or escaping SQL statements before constructing them with cpt parameter is not cleaned or escaped before it is used to construct an SQL statement. An attacker could exploit this vulnerability to execute illegal SQL commands.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress export any wordpress data to xml/csv plugin | lt | 1.3.5 |
Related
patchstack
patchstack
wpvulndb
wpvulndb
Export any WordPress data to XML/CSV < 1.3.5 - Admin+ SQL Injection
2022-05-20 00:00:00
cvelist
cvelist
nvd
nvd
CVE-2022-1800
2022-06-13 13:15:13
cve
cve
CVE-2022-1800
2022-06-13 13:15:13
prion
prion
Sql injection
2022-06-13 13:15:00
wpexploit
wpexploit
Export any WordPress data to XML/CSV < 1.3.5 - Admin+ SQL Injection
2022-05-20 00:00:00