Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:57 p.m.7 views

CVE-2022-3249

The WP CSV Exporter WordPress plugin before 1.3.7 does not properly sanitise and escape some parameters before using them in a SQL statement, allowing high privilege users such as admin to perform SQL injection attacks...

7.2CVSS7.3AI score0.0097EPSS
Exploits2References1
NVD
NVD
added 2022/12/05 5:15 p.m.24 views

CVE-2022-3249

The WP CSV Exporter WordPress plugin before 1.3.7 does not properly sanitise and escape some parameters before using them in a SQL statement, allowing high privilege users such as admin to perform SQL injection attacks...

7.2CVSS0.0097EPSS
Exploits2References1
Cvelist
Cvelist
added 2022/12/05 4:50 p.m.30 views

CVE-2022-3249 WP CSV Exporter < 1.3.7 - Admin+ SQLi

The WP CSV Exporter WordPress plugin before 1.3.7 does not properly sanitise and escape some parameters before using them in a SQL statement, allowing high privilege users such as admin to perform SQL injection attacks...

7.4AI score0.0097EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2022/12/05 4:50 p.m.5 views

CVE-2022-3249 WP CSV Exporter < 1.3.7 - Admin+ SQLi

The WP CSV Exporter WordPress plugin before 1.3.7 does not properly sanitise and escape some parameters before using them in a SQL statement, allowing high privilege users such as admin to perform SQL injection attacks...

7.3AI score0.0097EPSS
Exploits2References1
CVE
CVE
added 2022/12/05 4:50 p.m.54 views

CVE-2022-3249

The CVE-2022-3249 vulnerability affects the WP CSV Exporter WordPress plugin prior to version 1.3.7. The root cause is improper sanitisation/escaping of certain parameters before they are used in SQL statements, enabling authenticated high-privilege users (e.g., admins) to perform SQL injection. ...

7.2CVSS7.1AI score0.0097EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder