2 matches found
CVE-2022-0255
The Database Backup for WordPress plugin before 2.5.1 does not properly sanitise and escape the fragment parameter before using it in a SQL statement in the admin dashboard, leading to a SQL injection issue...
CVE-2022-0255
The CVE-2022-0255 entry concerns the WordPress Database Backup plugin (before 2.5.1). The vulnerability is a SQL injection in the admin dashboard caused by improper sanitisation/escaping of the fragment parameter before use in SQL. Affected component: the admin-side handling of the fragment param...