CVE-2022-2717
CVE-2022-2717 affects the WordPress plugin “JoomSport – for Sports: Team & League, Football, Hockey & more” up to version 5.2.5. The vulnerability is an SQL Injection via the orderby parameter on the joomsport-events-form page, caused by insufficient escaping and an inadequately prepared SQL quer...