exploitDog

GHSA-g8rq-2pr5-2p4w

Опубликовано: 21 июн. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.2

Описание

The Better Find and Replace WordPress plugin before 1.3.6 does not properly sanitise, validate and escape various parameters before using them in an SQL statement, leading to an SQL Injection

The Better Find and Replace WordPress plugin before 1.3.6 does not properly sanitise, validate and escape various parameters before using them in an SQL statement, leading to an SQL Injection

Ссылки

EPSS

Процентиль: 68%

0.00567

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2022-1472

CVSS3: 7.2

nvd

больше 3 лет назад

The Better Find and Replace WordPress plugin before 1.3.6 does not properly sanitise, validate and escape various parameters before using them in an SQL statement, leading to an SQL Injection

EPSS

Процентиль: 68%

0.00567

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-89