3 matches found
CVE-2022-0949
The Block Bad Bots and Stop Bad Bots Crawlers and Spiders and Anti Spam Protection WordPress plugin before 6.930 does not properly sanitise and escape the fingerprint parameter before using it in a SQL statement via the stopbadbotsgravafingerprint AJAX action, available to unauthenticated users,...
CVE-2022-0949
Summary: CVE-2022-0949 affects the WordPress Stop Bad Bots plugin (versions before 6.930). The vulnerability arises from improper sanitisation/escaping of the fingerprint parameter in the stopbadbots_grava_fingerprint AJAX action, which is accessible unauthenticated. This leads to a SQL injection...
CVE-2022-0949 WP Block and Stop Bad Bots < 6.930 - Unauthenticated SQLi
The Block Bad Bots and Stop Bad Bots Crawlers and Spiders and Anti Spam Protection WordPress plugin before 6.930 does not properly sanitise and escape the fingerprint parameter before using it in a SQL statement via the stopbadbotsgravafingerprint AJAX action, available to unauthenticated users,...