CVE-2022-1768
published 2022-06-13CVE-2022-1768: The RSVPMaker plugin for WordPress is vulnerable to unauthenticated SQL Injection due to insufficient escaping and parameterization on user supplied data…
PriorityP179high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
12.00%
95.6th percentile
The RSVPMaker plugin for WordPress is vulnerable to unauthenticated SQL Injection due to insufficient escaping and parameterization on user supplied data passed to multiple SQL queries in the ~/rsvpmaker-email.php file. This makes it possible for unauthenticated attackers to steal sensitive information from the database in versions up to, and including, 9.3.2.
Please note that this is separate from CVE-2022-1453 & CVE-2022-1505.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| carrcommunications | rsvpmaker | <= 9.3.2 | — |
Detection & IOCsextracted from sources · hover to see the quote
otherpayment_confirmation_message
yara
type: word part: body words: - '"payment_confirmation_message":' - type: word part: header words: - 'application/json' - type: status status: - 200
- →Unauthenticated SQL injection via user-supplied data in rsvpmaker-email.php; monitor for unsanitized SQL query patterns originating from unauthenticated requests to this file ↗
- →Fingerprint vulnerable RSVPMaker installations by checking for JSON response body containing 'payment_confirmation_message' key with HTTP 200 and Content-Type application/json header
- →Vulnerable versions are RSVPMaker for WordPress up to and including 9.3.2; flag installations at or below this version ↗
- ·This CVE is distinct from two related RSVPMaker SQL injection vulnerabilities and should be tracked separately in detection rules ↗
- ·The Nuclei template includes a digest signature that should be validated before deployment to ensure template integrity
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
vulncheck9.8CRITICAL
vendor_redhat7.7HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-q33g-8g5w-2m7c: The RSVPMaker plugin for WordPress is vulnerable to unauthenticated SQL Injection due to insufficient escaping and parameterization on user supplied d
ghsa_unreviewed·2022-06-14·CVSS 9.8
CVE-2022-1768 [CRITICAL] CWE-89 GHSA-q33g-8g5w-2m7c: The RSVPMaker plugin for WordPress is vulnerable to unauthenticated SQL Injection due to insufficient escaping and parameterization on user supplied d
The RSVPMaker plugin for WordPress is vulnerable to unauthenticated SQL Injection due to insufficient escaping and parameterization on user supplied data passed to multiple SQL queries in the ~/rsvpmaker-email.php file. This makes it possible for unauthenticated attackers to steal sensitive information from the database in versions up to, and including, 9.3.2. Please note that this is separate from CVE-2022-1453 & CVE-2022-1505.
VulnCheck
RSVPMaker plugin for WordPress Unauthenticated SQL Injection
vulncheck·2022·CVSS 9.8
CVE-2022-1768 [CRITICAL] RSVPMaker plugin for WordPress Unauthenticated SQL Injection
RSVPMaker plugin for WordPress Unauthenticated SQL Injection
The RSVPMaker plugin for WordPress is vulnerable to unauthenticated SQL Injection due to insufficient escaping and parameterization on user supplied data passed to multiple SQL queries in the ~/rsvpmaker-email.php file. This makes it possible for unauthenticated attackers to steal sensitive information from the database in versions up to, and including, 9.3.2.
Please note that this is separate from CVE-2022-1453 & CVE-2022-1505.
Affected: carrcommunications rsvpmaker
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://dashboard.shadowserver.org/statistics/honeypot/vulnerability/map/?day=202
Red Hat
kernel: ipvlan: Fix out-of-bound bugs caused by unset skb->mac_header
vendor_redhat·2024-04-28·CVSS 7.7
CVE-2022-48651 [HIGH] CWE-119 kernel: ipvlan: Fix out-of-bound bugs caused by unset skb->mac_header
kernel: ipvlan: Fix out-of-bound bugs caused by unset skb->mac_header
In the Linux kernel, the following vulnerability has been resolved:
ipvlan: Fix out-of-bound bugs caused by unset skb->mac_header
If an AF_PACKET socket is used to send packets through ipvlan and the
default xmit function of the AF_PACKET socket is changed from
dev_queue_xmit() to packet_direct_xmit() via setsockopt() with the option
name of PACKET_QDISC_BYPASS, the skb->mac_header may not be reset and
remains as the initial value of 65535, this may trigger slab-out-of-bounds
bugs as following:
UG: KASAN: slab-out-of-bounds in ipvlan_xmit_mode_l2+0xdb/0x330 [ipvlan]
PU: 2 PID: 1768 Comm: raw_send Kdump: loaded Not tainted 6.0.0-rc4+ #6
ardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.14.0-1.fc33
all Trace:
p
No detection rules found.
Nuclei
WordPress RSVPMaker <=9.3.2 - SQL Injection
nuclei·CVSS 7.5
CVE-2022-1768 [HIGH] WordPress RSVPMaker <=9.3.2 - SQL Injection
WordPress RSVPMaker =7'
- type: word
part: body
words:
- '"payment_confirmation_message":'
- type: word
part: header
words:
- 'application/json'
- type: status
status:
- 200
# digest: 490a0046304402207e49a0cac227d0104e3ee345ec32720b3d574d2858442fe6c381405bc5e7f3930220501bd7761878cec8f820e298d0b04834580469a86880db1a2a7ec86fdd121f44:922c64590222798bb761d5b6d8e72950
Greynoiseio
NoiseLetter October 2025
blogs_greynoiseio
NoiseLetter October 2025
CVE Disclosure Early Warning Get an early warning when traffic spikes indicate a high likelihood of new disclosures
Compromised Asset Detection Find out immediately if an asset communicates with a malicious IP address
Vulnerability Prioritization Get real-time insight into active exploitation trends to better understand risk and severity
SOC Efficiency Filter out noisy, low priority and false-positive alerts from mass internet scanners
Incident Investigation Add context to incidents to speed the determinations of scope and timelines
Threat Hunting Quickly identify anomalous behavior and enrich your threat hunting campaigns
Why GreyNoise
CVE Disclosure Early Warning Get an early warning when traffic spikes indicate a high likelihood of new disclosures
Compromised Asset Detection Fin
Bugzilla
CVE-2022-50575 kernel: xen/privcmd: Fix a possible warning in privcmd_ioctl_mmap_resource()
bugzilla·2025-10-22
CVE-2022-50575 [LOW] CVE-2022-50575 kernel: xen/privcmd: Fix a possible warning in privcmd_ioctl_mmap_resource()
CVE-2022-50575 kernel: xen/privcmd: Fix a possible warning in privcmd_ioctl_mmap_resource()
In the Linux kernel, the following vulnerability has been resolved:
xen/privcmd: Fix a possible warning in privcmd_ioctl_mmap_resource()
As 'kdata.num' is user-controlled data, if user tries to allocate
memory larger than(>=) MAX_ORDER, then kcalloc() will fail, it
creates a stack trace and messes up dmesg with a warning.
Call trace:
-> privcmd_ioctl
--> privcmd_ioctl_mmap_resource
Add __GFP_NOWARN in order to avoid too large allocation warning.
This is detected by static analysis using smatch.
Discussion:
Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2025102208-CVE-2022-50575-1768@gregkh/T
https://gist.github.com/Xib3rR4dAr/441d6bb4a5b8ad4b25074a49210a02cchttps://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=2725322%40rsvpmaker&new=2725322%40rsvpmaker&sfp_email=&sfph_mail=https://www.wordfence.com/threat-intel/vulnerabilities/id/c1d02646-271a-4079-8a47-00b4029e9c1f?source=cvehttps://www.wordfence.com/vulnerability-advisories/#CVE-2022-1768http://packetstormsecurity.com/files/176549/WordPress-RSVPMaker-9.3.2-SQL-Injection.htmlhttps://gist.github.com/Xib3rR4dAr/441d6bb4a5b8ad4b25074a49210a02cchttps://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=2725322%40rsvpmaker&new=2725322%40rsvpmaker&sfp_email=&sfph_mail=https://www.wordfence.com/threat-intel/vulnerabilities/id/c1d02646-271a-4079-8a47-00b4029e9c1f?source=cvehttps://www.wordfence.com/vulnerability-advisories/#CVE-2022-1768
2022-06-13
Published
Exploited in the wild