4 matches found
CVE-2022-3131
The Search Logger WordPress plugin through 0.9 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users...
CVE-2022-3131
creationtimestamp| type| source ---|---|--- 2022-10-17 16:13:15+00:00| seen| https://t.me/cibsecurity/51568 2025-05-14 16:33:52+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/16334...
CVE-2022-3131 Search Logger <= 0.9 - Admin+ SQLi
The Search Logger WordPress plugin through 0.9 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users...
CVE-2022-3131
CVE-2022-3131 affects the Search Logger WordPress plugin ≤ 0.9. The issue is an SQL injection caused by improper sanitisation/escaping of input before SQL statement construction, allowing an attacker with high privileges (Admin+) to exploit it. Public details indicate authenticated SQLi, with evi...