High severity8.8NVD Advisory· Published Nov 7, 2022· Updated Jun 17, 2026
CVE-2022-3494
CVE-2022-3494
Description
The Complianz WordPress plugin before 6.3.4, and Complianz Premium WordPress plugin before 6.3.6 allow a translators to inject arbitrary SQL through an unsanitized translation. SQL can be injected through an infected translation file, or by a user with a translator role through translation plugins such as Loco Translate or WPML.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Complianz/Complianz WordPress plugindescription
- Range: <6.3.6
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/71db75c0-5907-4237-884f-8db88b1a9b34nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.