WordPress SiteSuperCharger plugin <= 5.1.10 - Unauthenticated SQL Injection (SQLi) vulnerability

2022-04-1100:00:00

cydave

patchstack.com

wordpress

sitesupercharger

plugin

unauthenticated

sql injection

vulnerability

update

version 5.2.0

EPSS

0.002

Percentile

57.6%

Unauthenticated SQL Injection (SQLi) vulnerability discovered by cydave in WordPress SiteSuperCharger plugin (versions <= 5.1.10).

Solution

           Update the WordPress SiteSuperCharger plugin to the latest available version (at least 5.2.0).

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0771

wordpress.org/plugins/sitesupercharger/#developers

wpscan.com/vulnerability/6139e732-88f2-42cb-9dc3-42ad49731e75

EPSS

0.002

Percentile

57.6%

Related for PATCHSTACK:9174B974674EB4EC6A81D0E87A95EB60