Lucene search
China National Vulnerability DatabaseCNVD-2023-06872HistoryFeb 16, 2022 - 12:00 a.m.
WordPress Ad Invalid Click Protector (AICP) plugin SQL injection vulnerability
2022-02-1600:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
wordpress
sql injection
aicp plugin
php
mysql
security
vulnerability
EPSS
0.001
Percentile
37.7%
WordPress is a blogging platform developed by the Wordpress Foundation using the PHP language. The platform supports personal blogging sites on PHP and MySQL servers.A SQL injection vulnerability exists in versions prior to WordPress Ad Invalid Click Protector (AICP) plugin 1.2.6, which stems from a lack of validation and filtering in the id parameter of the plugin’s delete operation. An attacker could use this vulnerability to execute illegal SQL commands to steal sensitive database data.
Related
wpexploit
wpexploit
Ad Invalid Click Protector (AICP) < 1.2.6 - Authenticated SQL Injection
2022-01-14 00:00:00
nvd
nvd
CVE-2022-0190
2022-02-14 12:15:16
cve
cve
CVE-2022-0190
2022-02-14 12:15:16
prion
prion
Sql injection
2022-02-14 12:15:00
cvelist
cvelist
wpvulndb
wpvulndb
Ad Invalid Click Protector (AICP) < 1.2.6 - Authenticated SQL Injection
2022-01-14 00:00:00
patchstack
patchstack