The WPDating WordPress plugin before 7.4.0 does not properly escape user input before concatenating it to certain SQL queries, leading to multiple SQL injection vulnerabilities exploitable by unauthenticated users
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: WPScan
Published: 2022-08-08T13:51:32
Updated: 2024-08-03T00:39:07.706Z
Reserved: 2022-07-18T00:00:00
Link: CVE-2022-2460
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-08-08T14:15:10.697
Modified: 2024-11-21T07:01:02.003
Link: CVE-2022-2460
Redhat
No data.