3 matches found
CVE-2022-0771
The SiteSuperCharger WordPress plugin before 5.2.0 does not validate, sanitise and escape various user inputs before using them in SQL statements via AJAX actions available to both unauthenticated and authenticated users, leading to Unauthenticated SQL Injections...
CVE-2022-0771 SiteSuperCharger < 5.2.0 - Unauthenticated SQLi
The SiteSuperCharger WordPress plugin before 5.2.0 does not validate, sanitise and escape various user inputs before using them in SQL statements via AJAX actions available to both unauthenticated and authenticated users, leading to Unauthenticated SQL Injections...
CVE-2022-0771
The CVE-2022-0771 entry affects the SiteSuperCharger WordPress plugin (versions before 5.2.0). The root cause is failure to validate, sanitize, and escape user inputs in AJAX actions, allowing unauthenticated SQL injection via those endpoints. Impact is described as unauthenticated SQL injections...