cvedb.io
CVE-2022-2460
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2022-08-08T14:15:10.697 · Last modified 2026-06-17T04:41:56.150

Summary

The WPDating WordPress plugin before 7.4.0 does not properly escape user input before concatenating it to certain SQL queries, leading to multiple SQL injection vulnerabilities exploitable by unauthenticated users

Affected products

digital_product_labs — wpdating

Does this affect you?

Add your gear to cvedb and we'll alert you only when digital_product_labs ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.