CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-3150

The WP Custom Cursors WordPress plugin before 3.2 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privileged users such as admin

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 62.5%

CVSS Severity

CVSS v3 Score 7.2

References

https://wpscan.com/vulnerability/bb0806d7-21e3-4a65-910c-bf0625c338ec
https://wpscan.com/vulnerability/bb0806d7-21e3-4a65-910c-bf0625c338ec

Products affected by CVE-2022-3150

Wp Custom Cursors Project » Wp Custom Cursors » Version: Any

cpe:2.3:a:wp_custom_cursors_project:wp_custom_cursors:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-3150

Products

Pricing

Contact Us