CVE-2022-0254
WordPress Zero Spam plugin is vulnerable to SQL injection in admin dashboard due to improper sanitisation/escaping of order and orderby parameters. Affected versions are before 5.2.11 (noted by CVE records; Red Hat references 5.2.11; other advisories mention up to 5.2.13). The root cause is unsaf...