Lucene search
Krzysztof ZającPATCHSTACK:38F01FC8397D818A8779D4D43C06E39EHistoryFeb 02, 2022 - 12:00 a.m.
WordPress NotificationX plugin <= 2.3.8 - Unauthenticated Blind SQL Injection (SQLi) vulnerability
2022-02-0200:00:00
Krzysztof Zając
patchstack.com
20
0.024 Low
EPSS
Percentile
90.0%
Unauthenticated Blind SQL Injection (SQLi) vulnerability discovered by Krzysztof Zając in WordPress NotificationX plugin (versions <= 2.3.8).
Solution
Update the WordPress NotificationX plugin to the latest available version (at least 2.3.9).
| CPE | Name | Operator | Version |
|---|---|---|---|
| notificationx | le | 2.3.8 |
Related
wpexploit
wpexploit
NotificationX < 2.3.9 - Unauthenticated Blind SQL Injection
2022-02-02 00:00:00
cnvd
cnvd
WordPress NotificationX Plugin SQL Injection Vulnerability
2022-03-09 00:00:00
prion
prion
Sql injection
2022-03-07 09:15:00
cvelist
cvelist
CVE-2022-0349 NotificationX < 2.3.9 - Unauthenticated Blind SQL Injection
2022-03-07 08:16:27
cve
cve
CVE-2022-0349
2022-03-07 09:15:09
nuclei
nuclei
WordPress NotificationX <2.3.9 - SQL Injection
2022-10-01 13:26:09
wpvulndb
wpvulndb
NotificationX < 2.3.9 - Unauthenticated Blind SQL Injection
2022-02-02 00:00:00
nvd
nvd
CVE-2022-0349
2022-03-07 09:15:09