← volver
CVE-2022-1013

Personal Dictionary < 1.3.4 - Unauthenticated SQLi

EPSS 6.6%CWE-89
The Personal Dictionary WordPress plugin before 1.3.4 fails to properly sanitize user supplied POST data before it is being interpolated in an SQL statement and then executed, leading to a blind SQL injection vulnerability.
Productos afectados
Unknown · Personal Dictionary

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://wpscan.com/vulnerability/eed70659-9e3e-42a2-b427-56c52e0fbc0d