What the vulnerability does
01Description
SQL Injection (SQLi) vulnerability in RichPlugins Plugin for Google Reviews plugin <= 2.2.3 versions.
CVE-2022-44580
CRITICAL
CVE-2022-44580: WordPress Plugin for Google Reviews Plugin <= 2.2.3 is vulnerable to SQL Injection
CVSS base score
9.1/10
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:L
Key dates
02Disclosure timeline
March 15, 2023
CVE published
April 28, 2026
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2026-40845 Authenticated SQLi in devices_configuration view
CVE-2025-60109 WordPress LambertGroup - AllInOne - Content Slider Plugin <= 3.8 - SQL Injection Vulnerability
CVE-2026-32272 Craft Commerce: Blind SQL Injection via hasVariant/hasProduct
CVE-2023-47852 WordPress Link Whisper Free Plugin <= 0.6.5 is vulnerable to SQL Injection
CVE-2025-2847 Codezips Gym Management System over_month.php sql injection
