The Podcast Importer SecondLine WordPress plugin before 1.3.8 does not sanitise and properly escape some imported data, which could allow SQL injection attacks to be performed by imported a malicious podcast file
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: WPScan

Published: 2022-04-11T14:41:09

Updated: 2024-08-02T23:47:43.233Z

Reserved: 2022-03-18T00:00:00

Link: CVE-2022-1023

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-04-11T15:15:09.083

Modified: 2024-11-21T06:39:52.750

Link: CVE-2022-1023

cve-icon Redhat

No data.