CVE-2022-1687
CVE-2022-1687 affects WordPress Logo Slider plugin for versions up to 1.4.8. The lsp_slider_id parameter is not sanitized/escaped before being used in a SQL statement on the Manage Slider Images admin page, enabling SQL injection to steal data. Root cause: unsanitized input in admin functionality...