Calgary, Alberta, Canada
sales@hackhalt.com
Free Download Free Download Free Download
Explore Pricing Explore Pricing Explore Pricing

Blog

"Prevention is cheaper than a breach"

Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total3,046
Critical0
High3,046
Medium0
Reset
Showing 2641-2660 of 3046 records
Threat Entry Updated 2024-11-21

CVE-2022-2633 - All In One Video Gallery Plugin

The All-in-One Video Gallery plugin for WordPress is vulnerable to arbitrary file downloads and blind server-side request forgery via the 'dl' parameter found in the ~/public/video.php file in versions up to, and including 2.6.0. This makes it possible for unauthenticated users to download sensitive files hosted on the affected server and forge requests to the server.

PLUGIN All In One Video Gallery

CVE-2022-2633

HIGH CVSS 7.5 2022-09-06
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2022-2718 - Joomsport Sports League Results Management Plugin

The JoomSport – for Sports: Team & League, Football, Hockey & more plugin for WordPress is vulnerable to SQL Injection via the 'orderby' parameter on the joomsport-page-extrafields page in versions up to, and including, 5.2.5 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with administrative privileges, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

PLUGIN Joomsport Sports League Results Management

CVE-2022-2718

HIGH CVSS 7.2 2022-09-06
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2022-2717 - Joomsport Sports League Results Management Plugin

The JoomSport – for Sports: Team & League, Football, Hockey & more plugin for WordPress is vulnerable to SQL Injection via the 'orderby' parameter on the joomsport-events-form page in versions up to, and including, 5.2.5 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with administrative privileges, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

PLUGIN Joomsport Sports League Results Management

CVE-2022-2717

HIGH CVSS 7.2 2022-09-06
Open Full Technical Breakdown
Threat Entry Updated 2025-05-05

CVE-2022-2436 - Download Manager Plugin

The Download Manager plugin for WordPress is vulnerable to deserialization of untrusted input via the 'file[package_dir]' parameter in versions up to, and including 3.2.49. This makes it possible for authenticated attackers with contributor privileges and above to call files using a PHAR wrapper that will deserialize the data and call arbitrary PHP Objects that can be used to perform a variety of malicious actions granted a POP chain is also present. It also requires that the attacker is successful in uploading a file with the serialized payload.

PLUGIN Download Manager

CVE-2022-2436

HIGH CVSS 8.8 2022-09-06
Open Full Technical Breakdown
Threat Entry Updated 2025-05-05

CVE-2022-2434 - String Locator Plugin

The String Locator plugin for WordPress is vulnerable to deserialization of untrusted input via the 'string-locator-path' parameter in versions up to, and including 2.5.0. This makes it possible for unauthenticated users to call files using a PHAR wrapper, granted they can trick a site administrator into performing an action such as clicking on a link, that will deserialize and call arbitrary PHP Objects that can be used to perform a variety of malicious actions granted a POP chain is also present. It also requires that the attacker is successful in…

PLUGIN String Locator

CVE-2022-2434

HIGH CVSS 8.8 2022-09-06
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2022-2432 - Ecwid Ecommerce Shopping Cart Plugin

The Ecwid Ecommerce Shopping Cart plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 6.10.23. This is due to missing or incorrect nonce validation on the ecwid_update_plugin_params function. This makes it possible for unauthenticated attackers to update plugin options granted they can trick a site administrator into performing an action such as clicking on a link.

PLUGIN Ecwid Ecommerce Shopping Cart

CVE-2022-2432

HIGH CVSS 8.8 2022-09-06
Open Full Technical Breakdown
Threat Entry Updated 2025-05-05

CVE-2022-2233 - Banner Cycler Plugin

The Banner Cycler plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including 1.4. This is due to missing nonce protection on the pabc_admin_slides_postback() function found in the ~/admin/admin.php file. This makes it possible for unauthenticated attackers to inject malicious web scripts into the page, granted they can trick a site’s administrator into performing an action such as clicking on a link

PLUGIN Banner Cycler

CVE-2022-2233

HIGH CVSS 8.8 2022-09-06
Open Full Technical Breakdown
Threat Entry Updated 2025-03-21

CVE-2022-2431 - Download Manager Plugin

The Download Manager plugin for WordPress is vulnerable to arbitrary file deletion in versions up to, and including 3.2.50. This is due to insufficient file type and path validation on the deleteFiles() function found in the ~/Admin/Menu/Packages.php file that triggers upon download post deletion. This makes it possible for contributor level users and above to supply an arbitrary file path via the 'file[files]' parameter when creating a download post and once the user deletes the post the supplied arbitrary file will be deleted. This can be used by attackers to…

PLUGIN Download Manager

CVE-2022-2431

HIGH CVSS 8.1 2022-09-06
Open Full Technical Breakdown
Threat Entry Updated 2025-08-21

CVE-2022-2433 - Ajax Load More Plugin

The WordPress Infinite Scroll – Ajax Load More plugin for WordPress is vulnerable to deserialization of untrusted input via the 'alm_repeaters_export' parameter in versions up to, and including 5.5.3. This makes it possible for unauthenticated users to call files using a PHAR wrapper, granted they can trick a site administrator into performing an action such as clicking on a link, that will deserialize and call arbitrary PHP Objects that can be used to perform a variety of malicious actions granted a POP chain is also present. It also requires that…

PLUGIN Ajax Load More

CVE-2022-2433

HIGH CVSS 7.5 2022-09-06
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2022-2442 - Migration Backup Staging Plugin

The Migration, Backup, Staging – WPvivid plugin for WordPress is vulnerable to deserialization of untrusted input via the 'path' parameter in versions up to, and including 0.9.74. This makes it possible for authenticated attackers with administrative privileges to call files using a PHAR wrapper that will deserialize and call arbitrary PHP Objects that can be used to perform a variety of malicious actions granted a POP chain is also present. It also requires that the attacker is successful in uploading a file with the serialized payload.

PLUGIN Migration Backup Staging

CVE-2022-2442

HIGH CVSS 7.2 2022-09-06
Open Full Technical Breakdown
Threat Entry Updated 2025-05-05

CVE-2022-2438 - Broken Link Checker Plugin

The Broken Link Checker plugin for WordPress is vulnerable to deserialization of untrusted input via the '$log_file' value in versions up to, and including 1.11.16. This makes it possible for authenticated attackers with administrative privileges and above to call files using a PHAR wrapper that will deserialize the data and call arbitrary PHP Objects that can be used to perform a variety of malicious actions granted a POP chain is also present. It also requires that the attacker is successful in uploading a file with the serialized payload.

PLUGIN Broken Link Checker

CVE-2022-2438

HIGH CVSS 7.2 2022-09-06
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2022-2083 - Simple Sign On Plugin

The Simple Single Sign On WordPress plugin through 4.1.0 leaks its OAuth client_secret, which could be used by attackers to gain unauthorized access to the site.

PLUGIN Simple Sign On

CVE-2022-2083

HIGH CVSS 7.5 2022-09-05
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2022-2565 - Before 4 Plugin

The Simple Payment Donations & Subscriptions WordPress plugin before 4.2.1 does not sanitise and escape user input given in its forms, which could allow unauthenticated attackers to perform Cross-Site Scripting attacks against admins

PLUGIN Before 4

CVE-2022-2565

HIGH CVSS 7.2 2022-09-05
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2022-2559 - Fluent Support Plugin

The Fluent Support WordPress plugin before 1.5.8 does not properly sanitise, validate and escape various parameters before using them in an SQL statement, leading to an SQL Injection vulnerability exploitable by high privilege users

PLUGIN Fluent Support

CVE-2022-2559

HIGH CVSS 7.2 2022-08-29
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2022-2261 - Before 3 Plugin

The WPIDE WordPress plugin before 3.0 does not sanitize and validate the filename parameter before using it in a require statement in the admin dashboard, leading to a Local File Inclusion issue.

PLUGIN Before 3

CVE-2022-2261

HIGH CVSS 7.2 2022-08-29
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2022-1123 - Before 3 Plugin

The Leaflet Maps Marker (Google Maps, OpenStreetMap, Bing Maps) WordPress plugin before 3.12.5 does not properly sanitize some parameters before inserting them into SQL queries. As a result, high privilege users could perform SQL injection attacks.

PLUGIN Before 3

CVE-2022-1123

HIGH CVSS 7.2 2022-08-29
Open Full Technical Breakdown
Scroll to top