Lucene search
CydavePATCHSTACK:41F5398ABAE2DA87EBD64731C3FBD68EHistoryMar 02, 2022 - 12:00 a.m.
WordPress Limit Login Attempts (Spam Protection) plugin <= 4.9.1 - Unauthenticated SQL Injection (SQLi) vulnerability
2022-03-0200:00:00
cydave
patchstack.com
8
0.04 Low
EPSS
Percentile
92.2%
Unauthenticated SQL Injection (SQLi) vulnerability discovered by cydave in WordPress Limit Login Attempts (Spam Protection) plugin (versions <= 4.9.1).
Solution
Update the WordPress Limit Login Attempts (Spam Protection) plugin to the latest available version (at least 5.1).
| CPE | Name | Operator | Version |
|---|---|---|---|
| login protection – limit failed login attempts | le | 4.9.1 |
Related
nuclei
nuclei
Limit Login Attempts (Spam Protection) < 5.1 - SQL Injection
2023-10-17 07:20:28
wpexploit
wpexploit
Limit Login Attempts (Spam Protection) < 5.1 - Unauthenticated SQLi
2022-03-02 00:00:00
prion
prion
Sql injection
2022-03-28 18:15:00
cvelist
cvelist
nvd
nvd
CVE-2022-0787
2022-03-28 18:15:09
wpvulndb
wpvulndb
Limit Login Attempts (Spam Protection) < 5.1 - Unauthenticated SQLi
2022-03-02 00:00:00
cve
cve
CVE-2022-0787
2022-03-28 18:15:09