Joomsport Security Vulnerabilities and Issues — Joomsport CVE List

Lucene search

BeardevJoomsport

3 matches found

CVE•added 2022/12/19 2:15 p.m.•53 views

CVE-2022-4050

The JoomSport WordPress plugin before 5.2.8 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by unauthenticated users

9.8CVSS9.9AI score0.81404EPSS

In wildWeb

CVE•added 2022/09/06 6:15 p.m.•48 views

CVE-2022-2717

The JoomSport – for Sports: Team & League, Football, Hockey & more plugin for WordPress is vulnerable to SQL Injection via the 'orderby' parameter on the joomsport-events-form page in versions up to, and including, 5.2.5 due to insufficient escaping on the user supplied parameter and lack of suffic...

7.2CVSS5.2AI score0.01229EPSS

CVE•added 2022/09/06 6:15 p.m.•42 views

CVE-2022-2718

The JoomSport – for Sports: Team & League, Football, Hockey & more plugin for WordPress is vulnerable to SQL Injection via the 'orderby' parameter on the joomsport-page-extrafields page in versions up to, and including, 5.2.5 due to insufficient escaping on the user supplied parameter and lack of s...

7.2CVSS5.2AI score0.01029EPSS