CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

RedhatCVE•added 2025/05/23 1:20 a.m.•9 views

CVE-2022-3141

The Translate Multilingual sites WordPress plugin before 2.3.3 is vulnerable to an authenticated SQL injection. By adding a new language via the settings page containing specific special characters, the backticks in the SQL query can be surpassed and a time-based blind payload can be injected...

8.8CVSS7.4AI score0.0386EPSS

Exploits5References1

NVD•added 2022/09/19 2:15 p.m.•13 views

CVE-2022-3141

8.8CVSS0.0386EPSS

Exploits5References3

Prion•added 2022/09/19 2:15 p.m.•23 views

Sql injection

6.5CVSS8.9AI score0.0386EPSS

Exploits5References3Affected Software1

CVE•added 2022/09/19 12:0 a.m.•69 views

CVE-2022-3141

CVE-2022-3141 concerns the WordPress TranslatePress (Translate Multilingual) plugin, affected versions before 2.3.3. An authenticated attacker can inject a time-based blind payload via a crafted language entry, bypassing backticks in SQL queries. This yields a high-impact SQL injection vulnerabil...

8.8CVSS8.9AI score0.0386EPSS

Exploits5References3Affected Software1

Cvelist•added 2022/09/19 12:0 a.m.•17 views

CVE-2022-3141 Translatepress Multilinugal < 2.3.3 - Admin+ SQLi

9.2AI score0.0386EPSS

Exploits5References3

FreeBSD•added 2018/02/21 12:0 a.m.•39 views

drupal -- Drupal Core - Multiple Vulnerabilities

Drupal Security Team reports: CVE-2017-6926: Comment reply form allows access to restricted content CVE-2017-6927: JavaScript cross-site scripting prevention is incomplete CVE-2017-6928: Private file access bypass - Moderately Critical CVE-2017-6929: jQuery vulnerability with untrusted domains -...

8.1CVSS6.7AI score0.0139EPSS

Exploits1