EPSS
Percentile
90.0%
Unauthenticated Blind SQL Injection (SQLi) vulnerability discovered by Krzysztof Zając in WordPress NotificationX plugin (versions <= 2.3.8).
Update the WordPress NotificationX plugin to the latest available version (at least 2.3.9).
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0349
wordpress.org/plugins/notificationx/#developers
wpscan.com/vulnerability/1d0dd7be-29f3-4043-a9c6-67d02746463a