CVE-2022-1023

The Podcast Importer SecondLine WordPress plugin before 1.3.8 does not sanitise and properly escape some imported data, which could allow SQL injection attacks to be performed by imported a malicious podcast file...

CVE-2022-1023

The Podcast Importer SecondLine WordPress plugin before 1.3.8 does not sanitise and properly escape some imported data, which could allow SQL injection attacks to be performed by imported a malicious podcast file...

CVE-2022-1023 Podcast Importer SecondLine < 1.3.8 - Admin+ SQLi

The Podcast Importer SecondLine WordPress plugin before 1.3.8 does not sanitise and properly escape some imported data, which could allow SQL injection attacks to be performed by imported a malicious podcast file...

CVE-2022-1023

The CVE-2022-1023 entry concerns the WordPress plugin Podcast Importer SecondLine (versions before 1.3.8). The issue is a failure to sanitize/escape imported data, which can enable SQL injection via a malicious podcast file. Multiple connected sources confirm the vulnerability and provide exploit...

WordPress Podcast Importer SecondLine plugin SQL注入漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. WordPress plugin is a WordPress open source application plugin. WordPress Podcast Importer SecondLine plugin versions...

WordPress Podcast Importer SecondLine plugin <= 1.3.7 - SQL Injection (SQLi) vulnerability

SQL Injection SQLi vulnerability discovered by YICHENG LIU-ZTE CHENFENG lab in WordPress Podcast Importer SecondLine plugin versions = 1.3.7. Solution Update the WordPress Podcast Importer SecondLine plugin to the latest available version at least 1.3.8...

Podcast Importer SecondLine < 1.3.8 - Admin+ SQLi

The plugin does not sanitise and properly escape some imported data, which could allow SQL injection attacks to be performed by imported a malicious podcast file Put the XML below on a web server replacing the PAYLOAD with the correct one, then import a podcast...

Podcast Importer SecondLine < 1.3.8 - Admin+ SQLi

The plugin does not sanitise and properly escape some imported data, which could allow SQL injection attacks to be performed by imported a malicious podcast file PoC Put the XML below on a web server replacing the PAYLOAD with the correct one, then import a podcast...

WordPress server-side request forgery vulnerability (CNVD-2021-59062)

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A server-side request forgery vulnerability exists in the WordPress Podcast Importer SecondLine...

CVE-2020-24149

Server-side request forgery SSRF in the Podcast Importer SecondLine podcast-importer-secondline plugin 1.1.4 for WordPress via the podcastfeed parameter in a secondlineimportinitialize action to the secondlinepodcastimport page...

CVE-2020-24149

Server-side request forgery SSRF in the Podcast Importer SecondLine podcast-importer-secondline plugin 1.1.4 for WordPress via the podcastfeed parameter in a secondlineimportinitialize action to the secondlinepodcastimport page...

Server side request forgery (ssrf)

Server-side request forgery SSRF in the Podcast Importer SecondLine podcast-importer-secondline plugin 1.1.4 for WordPress via the podcastfeed parameter in a secondlineimportinitialize action to the secondlinepodcastimport page...

CVE-2020-24149

CVE-2020-24149 affects the WordPress Podcast Importer SecondLine plugin, version 1.1.4. The vulnerability is a Server-Side Request Forgery (SSRF) via the podcast_feed parameter in the secondline_import_initialize action to the secondlinepodcastimport page. Multiple sources (NVD, WPVulnDB, Patchst...

WordPress Plugin Podcast Importer SecondLine 代码问题漏洞

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A server-side request forgery vulnerability exists in the WordPress Podcast Importer SecondLine...