CVE-2022-2863
If you use this plugin on a site where user uploads content (images, videos, etc), and you have a high risk of XSS, you may
CVE-2022-2799 The Affiliates Manager WordPress plugin before 2.9.14 has unsafe settings that allow attackers to do Cross-Site Scripting.
Plugin writers are encouraged to review the settings they have access to to make sure they are only accessible to the WordPress roles that they
CVE-2022-38541 Archery v1.8.3 to v1.8.5 had multiple SQL injection vulnerabilities in the my2sql interface.
An attacker can exploit these vulnerabilities to inject arbitrary SQL statements into the database and take advantage of database ACLs that permit only certain actions
CVE-2022-36258 An SQL injection vulnerability in CustomerDAO.java in InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands.
In the following example, we have attempted to inject the command "-- -- -- -- -- -- -- -- -- -- -- -- --
CVE-2022-36376 Server-Side Request Forgery (SSRF) vulnerability in Rank Math SEO plugin <= 1.0.95 at WordPress.
Rank Math is a WordPress plugin that helps in improving your website’s search engine ranking. It is available in the repository of WordPress.org.
Episode
00:00:00
00:00:00