PT-2022-19592 · WordPress · 3Xsocializer
Lenon Leite
·
Published
2022-04-25
·
Updated
2022-05-05
·
CVE-2022-29419
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
3xSocializer plugin versions 0.98.22 and earlier
Description
The issue is related to a SQL Injection (SQLi) vulnerability. This vulnerability can be exploited by users with a low role, such as a subscriber or higher, in WordPress.
Recommendations
For versions 0.98.22 and earlier, update to a version later than 0.98.22 to resolve the issue.
Fix
SQL injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
3Xsocializer