The RSVPMaker plugin for WordPress... CVE-2022-1453

- AV AC AU C I A
发布: 2022-05-10
修订: 2022-05-11

The RSVPMaker plugin for WordPress is vulnerable to unauthenticated SQL Injection due to missing SQL escaping and parameterization on user supplied data passed to a SQL query in the rsvpmaker-util.php file. This makes it possible for unauthenticated attackers to steal sensitive information from the database in versions up to and including 9.2.5.

0%
暂无可用Exp或PoC
当前有0条受影响产品信息