CVE-2022-47420 WordPress Accessibility Suite by Online ADA Plugin <= 4.12 is vulnerable to SQL Injection

2023-11-0607:41:14

CWE-89

Patchstack

github.com

wordpress

sql injection

online ada

AI Score

9.8

Confidence

High

SSVC

Exploitation

none

Automatable

yes

Technical Impact

total

JSON

Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in Online ADA Accessibility Suite by Online ADA allows SQL Injection.This issue affects Accessibility Suite by Online ADA: from n/a through 4.12.

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:a:online_ada:accessibility_suite_by_online_ada:*:*:*:*:*:*:*:*"
    ],
    "vendor": "online_ada",
    "product": "accessibility_suite_by_online_ada",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "versionType": "custom",
        "lessThanOrEqual": "4.12"
      }
    ],
    "defaultStatus": "unknown"
  }
]