CVE-2022-1684

The CVE-2022-1684 entry concerns the WordPress Cube Slider plugin (versions ≤ 1.2). The root cause is failure to sanitize and escape the idslider parameter before use in SQL queries, enabling SQL injection. The vulnerability is described as exploitable by high-privilege users (e.g., admin); Patch...