CVE-2022-1013
published 2022-05-09CVE-2022-1013: The Personal Dictionary WordPress plugin before 1.3.4 fails to properly sanitize user supplied POST data before it is being interpolated in an SQL statement…
PriorityP268critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EXPLOIT
EPSS
6.63%
93.0th percentile
The Personal Dictionary WordPress plugin before 1.3.4 fails to properly sanitize user supplied POST data before it is being interpolated in an SQL statement and then executed, leading to a blind SQL injection vulnerability.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ays-pro | personal_dictionary | < 1.3.4 | 1.3.4 |
| linux | linux_kernel | >= 3.11.0 < 5.4.220 | 5.4.220 |
| linux | linux_kernel | >= 5.11.0 < 5.15.75 | 5.15.75 |
| linux | linux_kernel | >= 5.16.0 < 5.19.17 | 5.19.17 |
| linux | linux_kernel | >= 5.20.0 < 6.0.3 | 6.0.3 |
| linux | linux_kernel | >= 5.5.0 < 5.10.150 | 5.10.150 |
Detection & IOCsextracted from sources · hover to see the quote
sigma
title: WordPress Personal Dictionary SQLi
detection:
selection:
- 'status_code == 200'
- 'contains(content_type, "text/html")'
- 'contains(body, "\"status\":true,")'
condition: and- →Exploit targets a blind SQL injection via unsanitized POST data interpolated into SQL statements; monitor POST requests to the Personal Dictionary plugin endpoint for SQL injection payloads (e.g., time-based or boolean-based blind SQLi patterns). ↗
- →Successful exploitation returns HTTP 200 with Content-Type text/html and a JSON body containing '"status":true,' — use this response fingerprint to detect successful blind SQLi probes against the plugin.
- ·The Sigma/nuclei rule digest is embedded in the template and can be used to verify template integrity; tampering with the rule would invalidate the digest.
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
f2fs: fix to do sanity check on summary info
osv·2025-12-24
CVE-2022-50753 f2fs: fix to do sanity check on summary info
f2fs: fix to do sanity check on summary info
In the Linux kernel, the following vulnerability has been resolved:
f2fs: fix to do sanity check on summary info
As Wenqing Liu reported in bugzilla:
https://bugzilla.kernel.org/show_bug.cgi?id=216456
BUG: KASAN: use-after-free in recover_data+0x63ae/0x6ae0 [f2fs]
Read of size 4 at addr ffff8881464dcd80 by task mount/1013
CPU: 3 PID: 1013 Comm: mount Tainted: G W 6.0.0-rc4 #1
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.15.0-1 04/01/2014
Call Trace:
dump_stack_lvl+0x45/0x5e
print_report.cold+0xf3/0x68d
kasan_report+0xa8/0x130
recover_data+0x63ae/0x6ae0 [f2fs]
f2fs_recover_fsync_data+0x120d/0x1fc0 [f2fs]
f2fs_fill_super+0x4665/0x61e0 [f2fs]
mount_bdev+0x2cf/0x3b0
legacy_get_tree+0xed/0x1d0
vfs_get_tree+0x81/0x2b0
path_mount+0x
GHSA
GHSA-wxm3-92vm-cmjp: The Personal Dictionary WordPress plugin before 1
ghsa_unreviewed·2022-05-10
CVE-2022-1013 [CRITICAL] CWE-89 GHSA-wxm3-92vm-cmjp: The Personal Dictionary WordPress plugin before 1
The Personal Dictionary WordPress plugin before 1.3.4 fails to properly sanitize user supplied POST data before it is being interpolated in an SQL statement and then executed, leading to a blind SQL injection vulnerability.
Red Hat
kernel: f2fs: fix to do sanity check on summary info
vendor_redhat·2025-12-24
CVE-2022-50753 kernel: f2fs: fix to do sanity check on summary info
kernel: f2fs: fix to do sanity check on summary info
In the Linux kernel, the following vulnerability has been resolved:
f2fs: fix to do sanity check on summary info
As Wenqing Liu reported in bugzilla:
https://bugzilla.kernel.org/show_bug.cgi?id=216456
BUG: KASAN: use-after-free in recover_data+0x63ae/0x6ae0 [f2fs]
Read of size 4 at addr ffff8881464dcd80 by task mount/1013
CPU: 3 PID: 1013 Comm: mount Tainted: G W 6.0.0-rc4 #1
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.15.0-1 04/01/2014
Call Trace:
dump_stack_lvl+0x45/0x5e
print_report.cold+0xf3/0x68d
kasan_report+0xa8/0x130
recover_data+0x63ae/0x6ae0 [f2fs]
f2fs_recover_fsync_data+0x120d/0x1fc0 [f2fs]
f2fs_fill_super+0x4665/0x61e0 [f2fs]
mount_bdev+0x2cf/0x3b0
legacy_get_tree+0xed/0x1d0
vfs_get_tree+0x81/0x2b0
path_mount
No detection rules found.
Nuclei
WordPress Personal Dictionary <1.3.4 - Blind SQL Injection
nuclei·CVSS 9.8
CVE-2022-1013 [CRITICAL] WordPress Personal Dictionary <1.3.4 - Blind SQL Injection
WordPress Personal Dictionary =7'
- 'status_code == 200'
- 'contains(content_type, "text/html")'
- 'contains(body, "\"status\":true,")'
condition: and
# digest: 4b0a00483046022100d1954a893d980278befd1a1e71d069faa5e776730eafe3c57e99a10fdadf9793022100f615980f858250d8bdd9c968eb3d97ac8c83ca0504084fa56b0124f943afb7ab:922c64590222798bb761d5b6d8e72950
Greynoiseio
NoiseLetter September 2025
blogs_greynoiseio
NoiseLetter September 2025
CVE Disclosure Early Warning Get an early warning when traffic spikes indicate a high likelihood of new disclosures
Compromised Asset Detection Find out immediately if an asset communicates with a malicious IP address
Vulnerability Prioritization Get real-time insight into active exploitation trends to better understand risk and severity
SOC Efficiency Filter out noisy, low priority and false-positive alerts from mass internet scanners
Incident Investigation Add context to incidents to speed the determinations of scope and timelines
Threat Hunting Quickly identify anomalous behavior and enrich your threat hunting campaigns
Why GreyNoise
CVE Disclosure Early Warning Get an early warning when traffic spikes indicate a high likelihood of new disclosures
Compromised Asset Detection Fin
Bugzilla
CVE-2022-50753 kernel: f2fs: fix to do sanity check on summary info
bugzilla·2025-12-24
CVE-2022-50753 CVE-2022-50753 kernel: f2fs: fix to do sanity check on summary info
CVE-2022-50753 kernel: f2fs: fix to do sanity check on summary info
In the Linux kernel, the following vulnerability has been resolved:
f2fs: fix to do sanity check on summary info
As Wenqing Liu reported in bugzilla:
https://bugzilla.kernel.org/show_bug.cgi?id=216456
BUG: KASAN: use-after-free in recover_data+0x63ae/0x6ae0 [f2fs]
Read of size 4 at addr ffff8881464dcd80 by task mount/1013
CPU: 3 PID: 1013 Comm: mount Tainted: G W 6.0.0-rc4 #1
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.15.0-1 04/01/2014
Call Trace:
dump_stack_lvl+0x45/0x5e
print_report.cold+0xf3/0x68d
kasan_report+0xa8/0x130
recover_data+0x63ae/0x6ae0 [f2fs]
f2fs_recover_fsync_data+0x120d/0x1fc0 [f2fs]
f2fs_fill_super+0x4665/0x61e0 [f2fs]
mount_bdev+0x2cf/0x3b0
legacy_get_tree+0xed/0x1d0
vfs_get_tree+0
2022-05-09
Published