6 matches found
CVE-2022-3856
The Comic Book Management System WordPress plugin before 2.2.0 does not sanitize and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as Admin...
CVE-2022-3856
creationtimestamp| type| source ---|---|--- 2022-12-05 20:40:05+00:00| seen| https://t.me/cibsecurity/54001...
CVE-2022-3856
The Comic Book Management System WordPress plugin before 2.2.0 does not sanitize and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as Admin...
CVE-2022-3856
The Comic Book Management System WordPress plugin before 2.2.0 does not sanitize and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as Admin...
CVE-2022-3856
Summary: CVE-2022-3856 affects the WordPress plugin “Comic Book Management System” prior to version 2.2.0. The issue is a SQL injection caused by not sanitizing/escaping a parameter before it is used in a SQL statement, enabling exploitation by users with a role as low as Admin (no user interacti...
CVE-2022-3856 Comic Book Management System < 2.2.0 - Admin+ SQLi
The Comic Book Management System WordPress plugin before 2.2.0 does not sanitize and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as Admin...