Lucene search
China National Vulnerability DatabaseCNVD-2022-66597HistoryMar 02, 2022 - 12:00 a.m.
WordPress WP Cloudy plugin SQL injection vulnerability
2022-03-0200:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
0.001 Low
EPSS
Percentile
42.8%
WordPress is the Wordpress Foundation’s suite of blogging platforms developed using the PHP language. The platform supports setting up personal blogging sites on servers with PHP and MySQL.WordPress WP Cloudy plugin versions prior to 4.4.9 have a SQL injection vulnerability that stems from the plugin’s failure to escape the post_id parameter before using it in an SQL statement in the admin dashboard, which can be exploited by attackers to cause SQL injection problems.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress wp cloudy plugin | lt | 4.4.9 |
Related
prion
prion
Sql injection
2022-02-28 09:15:00
cvelist
cvelist
CVE-2021-24864 WP Cloudy < 4.4.9 - Admin+ SQL Injection
2022-02-28 09:06:13
cve
cve
CVE-2021-24864
2022-02-28 09:15:07
wpexploit
wpexploit
WP Cloudy < 4.4.9 - Admin+ SQL Injection
2021-10-13 00:00:00
patchstack
patchstack
WordPress WP Cloudy plugin <= 4.4.8 - SQL Injection (SQLi) vulnerability
2022-01-26 00:00:00
nvd
nvd
CVE-2021-24864
2022-02-28 09:15:07
wpvulndb
wpvulndb
WP Cloudy < 4.4.9 - Admin+ SQL Injection
2021-10-13 00:00:00