Low severity2.7NVD Advisory· Published Jun 8, 2022· Updated Jun 17, 2026
CVE-2022-1688
CVE-2022-1688
Description
The Note Press WordPress plugin through 0.1.10 does not sanitise and escape the id parameter before using it in various SQL statement via the admin dashboard, leading to SQL Injections
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<=0.1.10+ 1 more
- (no CPE)range: <=0.1.10
- (no CPE)range: <=0.1.10
Patches
Vulnerability mechanics
References
2- bulletin.iese.de/post/note-press_0-1-10_1nvdExploitThird Party Advisory
- wpscan.com/vulnerability/63d4444b-9b04-47f5-a692-c6c6c8ea7d92nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.