CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-4049

The WP User WordPress plugin through 7.0 does not properly sanitize and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by unauthenticated users.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.801

EPSS Ranking 99.1%

CVSS Severity

CVSS v3 Score 9.8

References

https://wpscan.com/vulnerability/9b0781e2-ad62-4308-bafc-d45b9a2472be
https://wpscan.com/vulnerability/9b0781e2-ad62-4308-bafc-d45b9a2472be

Products affected by CVE-2022-4049

Wp User Project » Wp User » Version: 7.0

cpe:2.3:a:wp_user_project:wp_user:7.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-4049

Products

Pricing

Contact Us