3 matches found
CVE-2022-0787
The Limit Login Attempts Spam Protection WordPress plugin before 5.1 does not sanitise and escape some parameters before using them in SQL statements via AJAX actions available to unauthenticated users, leading to SQL Injections...
CVE-2022-0787
The Limit Login Attempts Spam Protection WordPress plugin before 5.1 does not sanitise and escape some parameters before using them in SQL statements via AJAX actions available to unauthenticated users, leading to SQL Injections...
CVE-2022-0787
CVE-2022-0787 affects the WordPress plugin Limit Login Attempts (Spam Protection) prior to version 5.1. The issue is that certain parameters are not sanitized/escaped before being used in SQL statements inside unauthenticated AJAX actions, enabling SQL injection. The impact is unauthenticated acc...