CVEs-PoC/2022/CVE-2022-3494.md at b0e96c877abb080d7cf221c036336480ff266ccf

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-10 20:04:58 +02:00

Files

T

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

The Complianz WordPress plugin before 6.3.4, and Complianz Premium WordPress plugin before 6.3.6 allow a translators to inject arbitrary SQL through an unsanitized translation. SQL can be injected through an infected translation file, or by a user with a translator role through translation plugins such as Loco Translate or WPML.

POC

Reference

https://wpscan.com/vulnerability/71db75c0-5907-4237-884f-8db88b1a9b34

Github

No PoCs found on GitHub currently.

1.1 KiB Raw Blame History

CVE-2022-3494

Description

POC

Reference

Github

1.1 KiB

Raw Blame History