Unrated severityNVD Advisory· Published Jan 2, 2023· Updated Apr 10, 2025

Quote-O-Matic <= 1.0.5 - Admin+ SQLi

CVE-2022-4373

Description

The Quote-O-Matic WordPress plugin through 1.0.5 does not properly sanitize and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

WordPress/Quote-O-Maticdescription
WordPress/Quote-O-Maticllm-create
Range: <=1.0.5

Patches

Vulnerability mechanics

References

wpscan.com/vulnerability/aa07ddac-4f3d-4c4c-ba26-19bc05f22f02mitreexploitvdb-entrytechnical-description

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000