EUVD-2022-34721

Malicious code in bioql PyPI...

CVE-2022-2460

The WPDating WordPress plugin before 7.4.0 does not properly escape user input before concatenating it to certain SQL queries, leading to multiple SQL injection vulnerabilities exploitable by unauthenticated users...

WordPress plugin WPDating SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerability exist...

PT-2022-16747 · WordPress · Wpdating

Name of the Vulnerable Software and Affected Versions: WPDating WordPress plugin versions prior to 7.4.0 Description: The issue arises from the plugin's failure to properly escape user input before concatenating it to certain SQL queries, leading to multiple SQL injection vulnerabilities. These...

WPDating <= 7.1.9 - Multiple SQL Injection Issues

The plugin does not properly escape user input before concatenating it to certain SQL queries, leading to multiple SQL injection vulnerabilities. PoC http://vulnerable-site.tld/wp-content/plugins/dspdating/m1/postone.php?senderid=senderidsleep10id=senderidsleep10...