3 matches found
CVE-2022-0383
The WP Review Slider WordPress plugin before 11.0 does not sanitise and escape the pid parameter when copying a Twitter source, which could allow a high privilege users to perform SQL Injections attacks...
CVE-2022-0383
Summary (CVE-2022-0383) : The WordPress WP Review Slider plugin (before 11.0) fails to sanitize/escape the pid parameter when copying a Twitter source, enabling an attacker with high privileges to trigger SQL injection attacks. The issue stems from improper handling of the pid value in Twitter-co...
CVE-2022-0383 WP Review Slider < 11.0 - Admin+ SQL Injection
The WP Review Slider WordPress plugin before 11.0 does not sanitise and escape the pid parameter when copying a Twitter source, which could allow a high privilege users to perform SQL Injections attacks...