CVE-2022-1182

CVE-2022-1182: Visual Slide Box Builder <= 3.2.9 - Subscriber+ SQLi

Vendor Unknown
Product Visual Slide Box Builder
Weakness CWE-89 · SQLi
Published May 16, 2022
Last update August 2, 2024
View on NVD All CVEs

CVSS base score

What the vulnerability does

01Description

The Visual Slide Box Builder WordPress plugin through 3.2.9 does not sanitise and escape various parameters before using them in SQL statements via some of its AJAX actions available to any authenticated users (such as subscriber), leading to SQL Injections

Key dates

02Disclosure timeline

May 16, 2022 CVE published
August 2, 2024 Record updated

Related vulnerabilities

04Related CVE

CVE-2025-5365 Campcodes Online Hospital Management System patient-search.php sql injection CVE-2026-5580 CodeAstro Online Classroom Parameter addvideos.php sql injection CVE-2023-1983 SourceCodester Sales Tracker Management System GET Parameter manage_product.php sql injection CVE-2025-30807 WordPress Next-Cart Store to WooCommerce Migration plugin <= 3.9.4 - SQL Injection vulnerability CVE-2024-13014 PHPGurukul Maid Hiring Management System search-maid.php sql injection