Lucene search
+L

9 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-51881

Malicious code in bioql PyPI...

7.2CVSS7AI score0.00957EPSS
Exploits2References3
osv
osv
added 2023/02/13 3:15 p.m.3 views

CVE-2022-4546

The Mapwiz WordPress plugin through 1.0.1 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin...

7.2CVSS5.8AI score0.00957EPSS
Exploits2References2
prion
prion
added 2023/02/13 3:15 p.m.15 views

Sql injection

The Mapwiz WordPress plugin through 1.0.1 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin...

5.8CVSS7.1AI score0.00957EPSS
Exploits2References2Affected Software1
cve
cve
added 2023/02/13 2:32 p.m.54 views

CVE-2022-4546

Mapwiz WordPress plugin (<= 1.0.1) is affected by a SQL injection due to improper sanitisation/escaping of input before SQL construction. Exploitation is described as possible by high-privilege users (e.g., admin) and is supported by multiple sources (NVD/Red Hat/CVE listing) noting an Admin+ ...

7.2CVSS7.1AI score0.00957EPSS
Exploits2References2Affected Software1
vulnrichment
vulnrichment
added 2023/02/13 2:32 p.m.10 views

CVE-2022-4546 Mapwiz <= 1.0.1 - Admin+ SQLi

The Mapwiz WordPress plugin through 1.0.1 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin...

7.2AI score0.00957EPSS
Exploits2References2
cvelist
cvelist
added 2023/02/13 2:32 p.m.17 views

CVE-2022-4546 Mapwiz <= 1.0.1 - Admin+ SQLi

The Mapwiz WordPress plugin through 1.0.1 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin...

7.4AI score0.00957EPSS
Exploits2References2
cnnvd
cnnvd
added 2023/02/13 12:0 a.m.4 views

WordPress plugin Mapwiz SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerability exist...

7.2CVSS7.3AI score0.00957EPSS
Exploits2References3
patchstack
patchstack
added 2023/01/19 12:0 a.m.7 views

WordPress Mapwiz Plugin <= 1.0.1 is vulnerable to SQL Injection

Software Mapwiz Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2022-4546 Patch priority Low CVSS severity Low 7.6 Developer Claim ownership PSID 5aebce0acd8a Credits Daniel Krohmer Required privilege Administrator Published 19...

7.2CVSS7.2AI score0.00957EPSS
Exploits2References4Affected Software1
wpexploit
wpexploit
added 2023/01/19 12:0 a.m.537 views

Mapwiz <= 1.0.1 - Admin+ SQLi

The plugin does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin. POST /wp-admin/admin.php?page=myplug/muyplg.php&mid HTTP/1.1...

7.2CVSS7.6AI score0.00957EPSS
Exploits2References1
Rows per page
Query Builder