Unrated severityNVD Advisory· Published Dec 5, 2022· Updated Apr 23, 2025
WP CSV Exporter < 1.3.7 - Admin+ SQLi
CVE-2022-3249
Description
The WP CSV Exporter WordPress plugin before 1.3.7 does not properly sanitise and escape some parameters before using them in a SQL statement, allowing high privilege users such as admin to perform SQL injection attacks
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<1.3.7+ 1 more
- (no CPE)range: <1.3.7
- (no CPE)range: < 1.3.7
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/6503da78-a2bf-4b4c-b56d-21c8c55b076emitreexploitvdb-entrytechnical-description
News mentions
0No linked articles in our index yet.