» 2023 » 1월

CVE-2022-4356

Posted on 2023년 1월 3일2023년 1월 3일 by admin

CVE-2022-4356

The LetsRecover WordPress plugin through 1.1.0 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin

Source: CVE-2022-4356

CVE-2022-4359

Posted on 2023년 1월 3일2023년 1월 3일 by admin

CVE-2022-4359

The WP RSS By Publishers WordPress plugin through 0.1 does not properly sanitize and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin

Source: CVE-2022-4359

CVE-2022-4297

Posted on 2023년 1월 3일2023년 1월 3일 by admin

CVE-2022-4297

The WP AutoComplete Search WordPress plugin through 1.0.4 does not sanitise and escape a parameter before using it in a SQL statement via an AJAX available to unauthenticated users, leading to an unauthenticated SQL injection

Source: CVE-2022-4297

CVE-2022-4298

Posted on 2023년 1월 3일2023년 1월 3일 by admin

CVE-2022-4298

The Wholesale Market WordPress plugin before 2.2.1 does not have authorisation check, as well as does not validate user input used to generate system path, allowing unauthenticated attackers to download arbitrary file from the server.

Source: CVE-2022-4298

CVE-2022-4324

Posted on 2023년 1월 3일2023년 1월 3일 by admin

CVE-2022-4324

The Custom Field Template WordPress plugin before 2.5.8 unserialises the content of an imported file, which could lead to PHP object injections issues when a high privilege user import (intentionally or not) a malicious Customizer Styling file and a suitable gadget chain is present on the blog.

Source: CVE-2022-4324

CVE-2022-4099

Posted on 2023년 1월 3일2023년 1월 3일 by admin

CVE-2022-4099

The Joy Of Text Lite WordPress plugin before 2.3.1 does not properly sanitise and escape some parameters before using them in SQL statements accessible to unauthenticated users, leading to unauthenticated SQL injection

Source: CVE-2022-4099

CVE-2022-4236

Posted on 2023년 1월 3일2023년 1월 3일 by admin

CVE-2022-4236

The Welcart e-Commerce WordPress plugin before 2.8.5 does not validate user input before using it to output the content of a file via an AJAX action available to any authenticated users, which could allow users with a role as low as subscriber to read arbitrary files on the server.

Source: CVE-2022-4236

CVE-2022-4114

Posted on 2023년 1월 3일2023년 1월 3일 by admin

CVE-2022-4114

The Superio WordPress theme does not sanitise and escape some parameters, which could allow users with a role as low as a subscriber to perform Cross-Site Scripting attacks.

Source: CVE-2022-4114

CVE-2022-4237

Posted on 2023년 1월 3일2023년 1월 3일 by admin

CVE-2022-4237

The Welcart e-Commerce WordPress plugin before 2.8.6 does not validate user input before using it in file_exist() functions via various AJAX actions available to any authenticated users, which could allow users with a role as low as subscriber to perform PHAR deserialisation when they can upload a file and a suitable gadget chain is present on the blog

Source: CVE-2022-4237

CVE-2022-4140

Posted on 2023년 1월 3일2023년 1월 3일 by admin

CVE-2022-4140

The Welcart e-Commerce WordPress plugin before 2.8.5 does not validate user input before using it to output the content of a file, which could allow unauthenticated attacker to read arbitrary files on the server

Source: CVE-2022-4140