Lucene search
PRIOn knowledge basePRION:CVE-2022-3243HistoryOct 17, 2022 - 12:15 p.m.
Sql injection
2022-10-1712:15:00
PRIOn knowledge base
www.prio-n.com
2
wordpress
sql injection
plugin vulnerability
high privilege users
nvd
0.001 Low
EPSS
Percentile
32.3%
The Import all XML, CSV & TXT WordPress plugin before 6.5.8 does not properly sanitise and escape imported data before using them back SQL statements, leading to SQL injection exploitable by high privilege users such as admin
| CPE | Name | Operator | Version |
|---|---|---|---|
| import_all_pages\\,_post_types\\,_products\\,_orders\\,_and_users_as_xml_\\&_csv | lt | 6.5.8 |
Related
wpvulndb
wpvulndb
Import all XML, CSV & TXT into WordPress < 6.5.8 - Admin+ SQLi
2022-09-20 00:00:00
nvd
nvd
CVE-2022-3243
2022-10-17 12:15:10
cvelist
cvelist
CVE-2022-3243 Import all XML, CSV & TXT into WordPress < 6.5.8 - Admin+ SQLi
2022-10-17 00:00:00
wpexploit
wpexploit
Import all XML, CSV & TXT into WordPress < 6.5.8 - Admin+ SQLi
2022-09-20 00:00:00
patchstack
patchstack
cve
cve
CVE-2022-3243
2022-10-17 12:15:10