CVE-2022-4681
06.02.2023, 20:15
The Hide My WP WordPress plugin before 6.2.9 does not properly sanitize and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection.Enginsight
| Vendor | Product | Version |
|---|---|---|
| wpwave | hide_my_wp | 𝑥 < 6.2.9 |
𝑥
= Vulnerable software versions