5 matches found
CVE-2022-3249
The WP CSV Exporter WordPress plugin before 1.3.7 does not properly sanitise and escape some parameters before using them in a SQL statement, allowing high privilege users such as admin to perform SQL injection attacks...
CVE-2022-3249
The WP CSV Exporter WordPress plugin before 1.3.7 does not properly sanitise and escape some parameters before using them in a SQL statement, allowing high privilege users such as admin to perform SQL injection attacks...
CVE-2022-3249 WP CSV Exporter < 1.3.7 - Admin+ SQLi
The WP CSV Exporter WordPress plugin before 1.3.7 does not properly sanitise and escape some parameters before using them in a SQL statement, allowing high privilege users such as admin to perform SQL injection attacks...
CVE-2022-3249 WP CSV Exporter < 1.3.7 - Admin+ SQLi
The WP CSV Exporter WordPress plugin before 1.3.7 does not properly sanitise and escape some parameters before using them in a SQL statement, allowing high privilege users such as admin to perform SQL injection attacks...
CVE-2022-3249
The CVE-2022-3249 vulnerability affects the WP CSV Exporter WordPress plugin prior to version 1.3.7. The root cause is improper sanitisation/escaping of certain parameters before they are used in SQL statements, enabling authenticated high-privilege users (e.g., admins) to perform SQL injection. ...