0.006 Low
EPSS
Percentile
78.4%
Authenticated SQL Injection (SQLi) vulnerability discovered by Hassan Khan Yusufzai in WordPress StaffList plugin (versions <= 3.1.2).
Update the WordPress StaffList plugin to the latest available version (at least 3.1.5).
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1556
wordpress.org/plugins/stafflist/#developers
wpscan.com/vulnerability/04890549-6bd1-44dd-8bce-7125c01be5d4