CVE-2022-2269

CVE-2022-2269: Website File Changes Monitor < 1.8.3 - Admin+ SQLi

Vendor Unknown

Product Website File Changes Monitor

Weakness CWE-89 · SQLi

Published August 8, 2022

Last update August 3, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

The Website File Changes Monitor WordPress plugin before 1.8.3 does not sanitise and escape user input before using it in a SQL statement via an action available to users with the manage_options capability (by default admins), leading to an SQL injection

Key dates

02Disclosure timeline

August 8, 2022 CVE published

August 3, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2022-2269

Related vulnerabilities

04Related CVE

CVE-2026-2235 HGiga｜C&Cm@il - SQL Injection CVE-2023-2955 SourceCodester Students Online Internship Timesheet System GET Parameter rendered_report.php sql injection CVE-2025-3174 Project Worlds Online Lawyer Management System searchLawyer.php sql injection CVE-2024-30486 WordPress Media Library Folders plugin <= 8.1.7 - Auth. SQL Injection vulnerability CVE-2025-30002