CVE-2022-1800
N/A
N/A
Summary
The Export any WordPress data to XML/CSV WordPress plugin before 1.3.5 does not sanitize the cpt POST parameter when exporting post data before using it in a database query, leading to an SQL injection vulnerability.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Unknown | Export any WordPress data to XML/CSV | 1.3.5 < 1.3.5 | affected |
Weaknesses
- CWE-89: CWE-89 SQL Injection
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.