3 matches found
CVE-2022-46860
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in KaizenCoders Short URL allows SQL Injection.This issue affects Short URL: from n/a through 1.6.4...
CVE-2022-46860
CVE-2022-46860 affects the WordPress plugin Short URL (KaizenCoders) up to version 1.6.4 . The issue is an SQL Injection caused by improper neutralization of input, enabling unauthenticated/subscriber-exploited database access under the vulnerability path “Short URL”
WordPress Short URL Plugin <= 1.6.4 is vulnerable to SQL Injection
Software Short URL Type Plugin Vulnerable versions = 1.6.4 Fixed in 1.6.5 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2022-46860 Patch priority High CVSS severity High 8.5 Developer Claim ownership PSID dd0573e26311 Credits Le Ngoc Anh Required privilege Subscriber Published 2...