5 matches found
CVE-2022-3241
The Build App Online WordPress plugin before 1.0.19 does not properly sanitise and escape some parameters before using them in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection...
CVE-2022-3241
The Build App Online WordPress plugin before 1.0.19 does not properly sanitise and escape some parameters before using them in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection...
CVE-2022-3241
CVE-2022-3241 affects the Build App Online WordPress plugin up to version 1.0.19. The vulnerability is a SQL injection caused by improper sanitisation/escaping of parameters in an unauthenticated AJAX action. Impact per sources is high (CVE CVSS 9.8) with potential for full data compromise and al...
CVE-2022-3241 Build App Online < 1.0.19 - Unauthenticated SQL Injection
The Build App Online WordPress plugin before 1.0.19 does not properly sanitise and escape some parameters before using them in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection...
CVE-2022-3241 Build App Online < 1.0.19 - Unauthenticated SQL Injection
The Build App Online WordPress plugin before 1.0.19 does not properly sanitise and escape some parameters before using them in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection...