1 results (0.004 seconds)
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 1
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 1CVE-2022-2269 – Website File Changes Monitor < 1.8.3 - Admin+ SQLi
https://notcve.org/view.php?id=CVE-2022-2269
13 Jul 2022 — The Website File Changes Monitor WordPress plugin before 1.8.3 does not sanitise and escape user input before using it in a SQL statement via an action available to users with the manage_options capability (by default admins), leading to an SQL injection El plugin Website File Changes Monitor de WordPress versiones anteriores a 1.8.3, no sanea y escapa de la entrada del usuario antes de usarla en una sentencia SQL por medio de una acción disponible para usuarios con la capacidad manage_options (por defecto ... • https://wpscan.com/vulnerability/bb348c92-d7e3-4a75-98aa-dd1c463bfd65 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •