VYPR

Cyr to Lat

by WordPress

CVEs (1)

  • CVE-2022-4290HigOct 20, 2023
    risk 0.57cvss 8.8epss 0.01

    The Cyr to Lat plugin for WordPress is vulnerable to authenticated SQL Injection via the 'ctl_sanitize_title' function in versions up to, and including, 3.5 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.…