4 matches found
CVE-2022-3689
creationtimestamp| type| source ---|---|--- 2022-11-28 16:28:16+00:00| seen| https://t.me/cibsecurity/53575 2025-03-18 10:00:06+00:00| published-proof-of-concept| Telegram/zR3G7SfYkfnK69UNOpyls8VYWA0vIOvRqvJArx2ZbPMEdo 2025-03-26 21:02:08+00:00| seen|...
CVE-2022-3689 HTML Forms < 1.3.25 - Admin+ SQLi
The HTML Forms WordPress plugin before 1.3.25 does not properly properly escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users...
CVE-2022-3689 HTML Forms < 1.3.25 - Admin+ SQLi
The HTML Forms WordPress plugin before 1.3.25 does not properly properly escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users...
CVE-2022-3689
The CVE-2022-3689 entry concerns the WordPress HTML Forms plugin prior to version 1.3.25, where a parameter is not properly escaped before being used in an SQL statement, causing a SQL injection. The vulnerability is exploitable by high-privilege users and can lead to confidential data disclosure...