CVE-2022-38074

CWE-89SQL Injection3 documents3 sources
Severity
8.8HIGH
EPSS
1.0%
top 23.21%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Veronalabs WP Statistics
Timeline
PublishedMar 13

Description

SQL Injection vulnerability in VeronaLabs WP Statistics plugin <= 13.2.10 versions.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:HExploitability: 3.1 | Impact: 6.0

Affected Packages2 packages

CVEListV5veronalabs/wp_statisticsn/a13.2.10

🔴Vulnerability Details

2
CVEList
WordPress WP Statistics Plugin <= 13.2.10 is vulnerable to SQL Injection2023-03-13
GHSA
GHSA-78c8-hhm4-r4x7: SQL Injection vulnerability in VeronaLabs WP Statistics plugin <= 132023-03-13