CVE-2020-21131

SQL Injection vulnerability in MetInfo 7.0.0beta via admin/?n=language=languageweb=doAddLanguage...

CVE-2022-3141

The Translate Multilingual sites WordPress plugin before 2.3.3 is vulnerable to an authenticated SQL injection. By adding a new language via the settings page containing specific special characters, the backticks in the SQL query can be surpassed and a time-based blind payload can be injected...

PT-2022-20734 · WordPress · Translate Multilingual Sites

Name of the Vulnerable Software and Affected Versions: Translate Multilingual sites WordPress plugin versions prior to 2.3.3 Description: The issue allows for an authenticated SQL injection. This can be achieved by adding a new language via the settings page, containing specific special character...

Metinfo MetInfo SQL注入漏洞

Metinfo MetInfo is a content management system CMS developed by China Metinfo using PHP and Mysql. A SQL injection vulnerability exists in MetInfo, which originates from the product's admin/?n=language&c=languageweb&a=doAddLanguage does not securely validate user input data, and can be exploited ...