The Podcast Importer SecondLine WordPress plugin before 1.3.8 does not sanitise and properly escape some imported data, which could allow SQL injection attacks to be performed by imported a malicious podcast file
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: WPScan
Published: 2022-04-11T14:41:09
Updated: 2024-08-02T23:47:43.233Z
Reserved: 2022-03-18T00:00:00
Link: CVE-2022-1023
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-04-11T15:15:09.083
Modified: 2024-11-21T06:39:52.750
Link: CVE-2022-1023
Redhat
No data.