Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:57 p.m.8 views

CVE-2022-3243

The Import all XML, CSV & TXT WordPress plugin before 6.5.8 does not properly sanitise and escape imported data before using them back SQL statements, leading to SQL injection exploitable by high privilege users such as admin...

7.2CVSS7.5AI score0.00992EPSS
Exploits2References1
NVD
NVD
added 2022/10/17 12:15 p.m.20 views

CVE-2022-3243

The Import all XML, CSV & TXT WordPress plugin before 6.5.8 does not properly sanitise and escape imported data before using them back SQL statements, leading to SQL injection exploitable by high privilege users such as admin...

7.2CVSS0.00992EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2022/10/17 12:0 a.m.9 views

CVE-2022-3243 Import all XML, CSV & TXT into WordPress < 6.5.8 - Admin+ SQLi

The Import all XML, CSV & TXT WordPress plugin before 6.5.8 does not properly sanitise and escape imported data before using them back SQL statements, leading to SQL injection exploitable by high privilege users such as admin...

7.4AI score0.00992EPSS
Exploits2References1
Cvelist
Cvelist
added 2022/10/17 12:0 a.m.27 views

CVE-2022-3243 Import all XML, CSV & TXT into WordPress < 6.5.8 - Admin+ SQLi

The Import all XML, CSV & TXT WordPress plugin before 6.5.8 does not properly sanitise and escape imported data before using them back SQL statements, leading to SQL injection exploitable by high privilege users such as admin...

7.5AI score0.00992EPSS
Exploits2References1
CVE
CVE
added 2022/10/17 12:0 a.m.62 views

CVE-2022-3243

CVE-2022-3243 affects the WordPress Import all XML, CSV & TXT plugin (versions prior to 6.5.8). The root cause is improper sanitization/escaping of imported data used in SQL statements, enabling SQL injection by high-privilege users (e.g., admins). Exploitation details exist in published entries ...

7.2CVSS7.2AI score0.00992EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder