RSS   Vulnerabilities for 'Badgeos'   RSS

2022-05-09
 
CVE-2022-0817

CWE-89
 

 
The BadgeOS WordPress plugin through 3.7.0 does not sanitise and escape a parameter before using it in a SQL statement via an AJAX action, leading to an SQL Injection exploitable by unauthenticated users

 


Copyright 2024, cxsecurity.com

 

Back to Top