Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2022-0787

Disclosure Date: March 28, 2022 (last updated October 07, 2023)
The Limit Login Attempts (Spam Protection) WordPress plugin before 5.1 does not sanitise and escape some parameters before using them in SQL statements via AJAX actions (available to unauthenticated users), leading to SQL Injections
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0