3 matches found
CVE-2022-1556
The StaffList WordPress plugin before 3.1.5 does not properly sanitise and escape a parameter before using it in a SQL statement when searching for Staff in the admin dashboard, leading to an SQL Injection...
CVE-2022-1556
creationtimestamp| type| source ---|---|--- 2022-05-30 12:18:05+00:00| seen| https://t.me/cibsecurity/43544...
CVE-2022-1556 StaffList < 3.1.5 - Admin+ SQLi
The StaffList WordPress plugin before 3.1.5 does not properly sanitise and escape a parameter before using it in a SQL statement when searching for Staff in the admin dashboard, leading to an SQL Injection...