CVE-2022-3302

CVE-2022-3302: Anti-Spam by CleanTalk < 5.185.1 - Admin+ SQLi

Vendor Unknown

Product Spam protection, AntiSpam, FireWall by CleanTalk

Weakness CWE-89 · SQLi

Published October 25, 2022

Last update May 9, 2025

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

The Spam protection, AntiSpam, FireWall by CleanTalk WordPress plugin before 5.185.1 does not validate ids before using them in a SQL statement, which could lead to SQL injection exploitable by high privilege users such as admin

Key dates

02Disclosure timeline

October 25, 2022 CVE published

May 9, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2022-3302

Related vulnerabilities

04Related CVE

CVE-2025-3334 codeprojects Online Restaurant Management System category_save.php sql injection CVE-2025-6406 Campcodes Online Hospital Management System forgot-password.php sql injection CVE-2020-6132 CVE-2024-55977 WordPress LaunchPage.app Importer plugin <= 1.1 - SQL Injection vulnerability CVE-2026-4908 code-projects Simple Laundry System Parameter modstaffinfo.php sql injection