CVE-2022-3131

CVE-2022-3131: Search Logger <= 0.9 - Admin+ SQLi

Vendor Unknown

Product Search Logger – Know What Your Visitors Search

Weakness CWE-89 · SQLi

Published October 17, 2022

Last update May 14, 2025

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

The Search Logger WordPress plugin through 0.9 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users

Key dates

02Disclosure timeline

October 17, 2022 CVE published

May 14, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2022-3131 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/89.html

Related vulnerabilities

04Related CVE

CVE-2025-5229 Campcodes Online Hospital Management System view-patient.php sql injection CVE-2024-22221 CVE-2024-2341 Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin <= 1.6.7.7 - Authenticated (Subscriber+) SQL Injection CVE-2025-2033 code-projects Blood Bank Management System view_donor.php sql injection CVE-2025-3204 CodeAstro Car Rental System returncar.php sql injection