WordPress Plugin Vulnerabilities

Better Search and Replace < 1.4.1 - Admin+ SQLi

Description

The plugin does not properly sanitise and escape table data before inserting it into a SQL query, which could allow high privilege users to perform SQL Injection attacks

Proof of Concept

Affects Plugins

Plugin icon
better-search-replace
Fixed in 1.4.1

References

CVE
CVE-2022-2593

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89
CVSS
6.8 (medium)

Miscellaneous

Original Researcher
Christiaan Swiers
Submitter
Christiaan Swiers
Submitter website
https://mijnsecuritypartner.nl
Submitter twitter
YouGina
Verified
Yes
WPVDB ID
229a065e-1062-44d4-818d-29aa3b6b6d41

Timeline

Publicly Published
2022-08-01 (about 3 years ago)
Added
2022-08-01 (about 3 years ago)
Last Updated
2023-05-03 (about 2 years ago)

Other

Published
Title
Published
2015-06-08
Title
Newstatpress < 1.0.1 - SQL Injection
Published
2025-05-20
Title
School Management <= 92.0.0 - Authenticated (Subscriber+) SQL Injection
Published
2025-07-16
Title
YaySMTP < 1.3.1 - Authenticated (Administrator+) SQL Injection
Published
2025-09-10
Title
Smartcat Translator for WPML < 3.1.73 - Authenticated (Author+) SQL Injection via orderby Parameter
Published
2014-12-03
Title
Cart66 Lite < 1.5.2 - Blind SQL Injection