cve/2022/CVE-2022-2958.md

### [CVE-2022-2958](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2958)
![](https://img.shields.io/static/v1?label=Product&message=BadgeOS&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=3.7.1.3%3C%203.7.1.3%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-89%20SQL%20Injection&color=brighgreen)

### Description

The BadgeOS WordPress plugin before 3.7.1.3 does not sanitise and escape parameters before using them in SQL statements via AJAX actions available to any authenticated users, leading to SQL Injections

### POC

#### Reference
- https://wpscan.com/vulnerability/8743534f-8ebd-496a-99bc-5052a8bac86a

#### Github
- https://github.com/cyllective/CVEs
Update Sat May 25 21:48:12 CEST 2024 2024-05-25 21:48:12 +02:00			`### [CVE-2022-2958](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2958)`
			`![](https://img.shields.io/static/v1?label=Product&message=BadgeOS&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=3.7.1.3%3C%203.7.1.3%20&color=brighgreen)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-89%20SQL%20Injection&color=brighgreen)`

			`### Description`

			`The BadgeOS WordPress plugin before 3.7.1.3 does not sanitise and escape parameters before using them in SQL statements via AJAX actions available to any authenticated users, leading to SQL Injections`

			`### POC`

			`#### Reference`
			`- https://wpscan.com/vulnerability/8743534f-8ebd-496a-99bc-5052a8bac86a`

			`#### Github`
			`- https://github.com/cyllective/CVEs`