2 matches found
CVE-2022-0747
creationtimestamp| type| source ---|---|--- 2022-03-21 21:26:36+00:00| seen| https://t.me/cibsecurity/39332 2025-01-26 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-01-26 2025-05-11 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities -...
CVE-2022-0747 Infographic Maker - iList < 4.3.8 - Unauthenticated SQL Injection
The Infographic Maker WordPress plugin before 4.3.8 does not validate and escape the postid parameter before using it in a SQL statement via the qcldupvoteaction AJAX action available to unauthenticated and authenticated users, leading to an unauthenticated SQL Injection...