Security Advisory

CVE-2022-1800

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-06-13 12:43:04
Last updated 2024-08-03 00:17:00
Assigner WPScan
State PUBLISHED

Description

The Export any WordPress data to XML/CSV WordPress plugin before 1.3.5 does not sanitize the cpt POST parameter when exporting post data before using it in a database query, leading to an SQL injection vulnerability.