Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:4 p.m.7 views

CVE-2022-0827

The Bestbooks WordPress plugin through 2.6.3 does not sanitise and escape some parameters before using them in a SQL statement via an AJAX action, leading to an SQL Injection exploitable by unauthenticated users...

9.8CVSS9.8AI score0.09047EPSS
Exploits2References1
Circl
Circl
added 2025/01/26 12:0 a.m.37 views

CVE-2022-0827

creationtimestamp| type| source ---|---|--- 2025-01-26 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-01-26 2025-02-01 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-02-01 2025-02-01 00:00:00+00:00| exploited| The Shadowserver...

9.8CVSS7.3AI score0.09047EPSS
In wildExploits2References3
CVE
CVE
added 2022/06/13 12:41 p.m.89 views

CVE-2022-0827

WordPress Best Books plugin (versions up to 2.6.3) contains an SQL injection due to insufficient sanitization/escaping of parameters in an Ajax action. The vulnerability affects the plugin's handling of user-supplied data in SQL statements, enabling unauthenticated attackers to potentially read o...

9.8CVSS9.8AI score0.09047EPSS
In wildExploits2References1Affected Software1
Cvelist
Cvelist
added 2022/06/13 12:41 p.m.26 views

CVE-2022-0827 Bestbooks <= 2.6.3 - Unauthenticated SQLi

The Bestbooks WordPress plugin through 2.6.3 does not sanitise and escape some parameters before using them in a SQL statement via an AJAX action, leading to an SQL Injection exploitable by unauthenticated users...

10AI score0.09047EPSS
Exploits2References1
Rows per page
Query Builder