Lucene search
PatchstackCVE-2022-45355HistoryMar 29, 2023 - 7:15 p.m.
CVE-2022-45355
2023-03-2919:15:21
CWE-89
Patchstack
web.nvd.nist.gov
23
cve-2022-45355
auth
admin+
sql injection
sqli
thimpress wp pipes
nvd
CVSS3
8.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:L
AI Score
7.4
Confidence
High
EPSS
0.001
Percentile
34.1%
Auth. (admin+) SQL Injection (SQLi) vulnerability in ThimPress WP Pipes plugin <=Β 1.33 versions.
Affected configurations
Node
thimpresswp_pipesRangeβ€1.33wordpress
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "wp-pipes",
"product": "WP Pipes",
"vendor": "ThimPress",
"versions": [
{
"changes": [
{
"at": "1.4.0",
"status": "unaffected"
}
],
"lessThanOrEqual": "1.33",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
cvelist
cvelist
prion
prion
Sql injection
2023-03-29 19:15:00
nvd
nvd
CVE-2022-45355
2023-03-29 19:15:21
wpvulndb
wpvulndb
WP Pipes < 1.4.0 - Admin+ SQLi
2022-12-20 00:00:00
CVSS3
8.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:L
AI Score
7.4
Confidence
High
EPSS
0.001
Percentile
34.1%
Related for CVE-2022-45355