WordPress 4.1-5.8.2 – SQL Injection via WP_Meta_Query | CVE 2022-21664

Affects WordPress

5.8.2

Fixed in WordPress 5.8.3

5.8.1

Fixed in WordPress 5.8.3

5.8

Fixed in WordPress 5.8.3

5.7.4

Fixed in WordPress 5.7.5

5.7.3

Fixed in WordPress 5.7.5

5.7.2

Fixed in WordPress 5.7.5

5.7.1

Fixed in WordPress 5.7.5

5.7

Fixed in WordPress 5.7.5

5.6.6

Fixed in WordPress 5.6.7

5.6.5

Fixed in WordPress 5.6.7

5.6.4

Fixed in WordPress 5.6.7

5.6.3

Fixed in WordPress 5.6.7

5.6.2

Fixed in WordPress 5.6.7

5.6.1

Fixed in WordPress 5.6.7

5.6

Fixed in WordPress 5.6.7

5.5.7

Fixed in WordPress 5.5.8

5.5.6

Fixed in WordPress 5.5.8

5.5.5

Fixed in WordPress 5.5.8

5.5.4

Fixed in WordPress 5.5.8

5.5.3

Fixed in WordPress 5.5.8

5.5.2

Fixed in WordPress 5.5.8

5.5.1

Fixed in WordPress 5.5.8

5.5

Fixed in WordPress 5.5.8

5.4.8

Fixed in WordPress 5.4.9

5.4.7

Fixed in WordPress 5.4.9

5.4.6

Fixed in WordPress 5.4.9

5.4.5

Fixed in WordPress 5.4.9

5.4.4

Fixed in WordPress 5.4.9

5.4.3

Fixed in WordPress 5.4.9

5.4.2

Fixed in WordPress 5.4.9

5.4.1

Fixed in WordPress 5.4.9

5.4

Fixed in WordPress 5.4.9

5.3.10

Fixed in WordPress 5.3.11

5.3.9

Fixed in WordPress 5.3.11

5.3.8

Fixed in WordPress 5.3.11

5.3.7

Fixed in WordPress 5.3.11

5.3.6

Fixed in WordPress 5.3.11

5.3.5

Fixed in WordPress 5.3.11

5.3.4

Fixed in WordPress 5.3.11

5.3.3

Fixed in WordPress 5.3.11

5.3.2

Fixed in WordPress 5.3.11

5.3.1

Fixed in WordPress 5.3.11

5.3

Fixed in WordPress 5.3.11

5.2.13

Fixed in WordPress 5.2.14

5.2.12

Fixed in WordPress 5.2.14

5.2.11

Fixed in WordPress 5.2.14

5.2.10

Fixed in WordPress 5.2.14

5.2.9

Fixed in WordPress 5.2.14

5.2.8

Fixed in WordPress 5.2.14

5.2.7

Fixed in WordPress 5.2.14

5.2.6

Fixed in WordPress 5.2.14

5.2.5

Fixed in WordPress 5.2.14

5.2.4

Fixed in WordPress 5.2.14

5.2.3

Fixed in WordPress 5.2.14

5.2.2

Fixed in WordPress 5.2.14

5.2.1

Fixed in WordPress 5.2.14

5.2

Fixed in WordPress 5.2.14

5.1.11

Fixed in WordPress 5.1.12

5.1.10

Fixed in WordPress 5.1.12

5.1.9

Fixed in WordPress 5.1.12

5.1.8

Fixed in WordPress 5.1.12

5.1.7

Fixed in WordPress 5.1.12

5.1.6

Fixed in WordPress 5.1.12

5.1.5

Fixed in WordPress 5.1.12

5.1.4

Fixed in WordPress 5.1.12

5.1.3

Fixed in WordPress 5.1.12

5.1.2

Fixed in WordPress 5.1.12

5.1.1

Fixed in WordPress 5.1.12

5.1

Fixed in WordPress 5.1.12

5.0.14

Fixed in WordPress 5.0.15

5.0.13

Fixed in WordPress 5.0.15

5.0.12

Fixed in WordPress 5.0.15

5.0.11

Fixed in WordPress 5.0.15

5.0.10

Fixed in WordPress 5.0.15

5.0.9

Fixed in WordPress 5.0.15

5.0.8

Fixed in WordPress 5.0.15

5.0.7

Fixed in WordPress 5.0.15

5.0.6

Fixed in WordPress 5.0.15

5.0.4

Fixed in WordPress 5.0.15

5.0.3

Fixed in WordPress 5.0.15

5.0.2

Fixed in WordPress 5.0.15

5.0.1

Fixed in WordPress 5.0.15

5.0

Fixed in WordPress 5.0.15

4.9.18

Fixed in WordPress 4.9.19

4.9.17

Fixed in WordPress 4.9.19

4.9.16

Fixed in WordPress 4.9.19

4.9.15

Fixed in WordPress 4.9.19

4.9.14

Fixed in WordPress 4.9.19

4.9.13

Fixed in WordPress 4.9.19

4.9.12

Fixed in WordPress 4.9.19

4.9.11

Fixed in WordPress 4.9.19

4.9.10

Fixed in WordPress 4.9.19

4.9.9

Fixed in WordPress 4.9.19

4.9.8

Fixed in WordPress 4.9.19

4.9.7

Fixed in WordPress 4.9.19

4.9.6

Fixed in WordPress 4.9.19

4.9.5

Fixed in WordPress 4.9.19

4.9.4

Fixed in WordPress 4.9.19

4.9.3

Fixed in WordPress 4.9.19

4.9.2

Fixed in WordPress 4.9.19

4.9.1

Fixed in WordPress 4.9.19

4.9

Fixed in WordPress 4.9.19

4.8.17

Fixed in WordPress 4.8.18

4.8.16

Fixed in WordPress 4.8.18

4.8.15

Fixed in WordPress 4.8.18

4.8.14

Fixed in WordPress 4.8.18

4.8.13

Fixed in WordPress 4.8.18

4.8.12

Fixed in WordPress 4.8.18

4.8.11

Fixed in WordPress 4.8.18

4.8.10

Fixed in WordPress 4.8.18

4.8.9

Fixed in WordPress 4.8.18

4.8.8

Fixed in WordPress 4.8.18

4.8.7

Fixed in WordPress 4.8.18

4.8.6

Fixed in WordPress 4.8.18

4.8.5

Fixed in WordPress 4.8.18

4.8.4

Fixed in WordPress 4.8.18

4.8.3

Fixed in WordPress 4.8.18

4.8.2

Fixed in WordPress 4.8.18

4.8.1

Fixed in WordPress 4.8.18

4.8

Fixed in WordPress 4.8.18

4.7.21

Fixed in WordPress 4.7.22

4.7.20

Fixed in WordPress 4.7.22

4.7.19

Fixed in WordPress 4.7.22

4.7.18

Fixed in WordPress 4.7.22

4.7.17

Fixed in WordPress 4.7.22

4.7.16

Fixed in WordPress 4.7.22

4.7.15

Fixed in WordPress 4.7.22

4.7.14

Fixed in WordPress 4.7.22

4.7.13

Fixed in WordPress 4.7.22

4.7.12

Fixed in WordPress 4.7.22

4.7.11

Fixed in WordPress 4.7.22

4.7.10

Fixed in WordPress 4.7.22

4.7.9

Fixed in WordPress 4.7.22

4.7.8

Fixed in WordPress 4.7.22

4.7.7

Fixed in WordPress 4.7.22

4.7.6

Fixed in WordPress 4.7.22

4.7.5

Fixed in WordPress 4.7.22

4.7.4

Fixed in WordPress 4.7.22

4.7.3

Fixed in WordPress 4.7.22

4.7.2

Fixed in WordPress 4.7.22

4.7.1

Fixed in WordPress 4.7.22

4.7

Fixed in WordPress 4.7.22

4.6.21

Fixed in WordPress 4.6.22

4.6.20

Fixed in WordPress 4.6.22

4.6.19

Fixed in WordPress 4.6.22

4.6.18

Fixed in WordPress 4.6.22

4.6.17

Fixed in WordPress 4.6.22

4.6.16

Fixed in WordPress 4.6.22

4.6.15

Fixed in WordPress 4.6.22

4.6.14

Fixed in WordPress 4.6.22

4.6.13

Fixed in WordPress 4.6.22

4.6.12

Fixed in WordPress 4.6.22

4.6.11

Fixed in WordPress 4.6.22

4.6.10

Fixed in WordPress 4.6.22

4.6.9

Fixed in WordPress 4.6.22

4.6.8

Fixed in WordPress 4.6.22

4.6.7

Fixed in WordPress 4.6.22

4.6.6

Fixed in WordPress 4.6.22

4.6.5

Fixed in WordPress 4.6.22

4.6.4

Fixed in WordPress 4.6.22

4.6.3

Fixed in WordPress 4.6.22

4.6.2

Fixed in WordPress 4.6.22

4.6.1

Fixed in WordPress 4.6.22

4.6

Fixed in WordPress 4.6.22

4.5.24

Fixed in WordPress 4.5.25

4.5.23

Fixed in WordPress 4.5.25

4.5.22

Fixed in WordPress 4.5.25

4.5.21

Fixed in WordPress 4.5.25

4.5.20

Fixed in WordPress 4.5.25

4.5.19

Fixed in WordPress 4.5.25

4.5.18

Fixed in WordPress 4.5.25

4.5.17

Fixed in WordPress 4.5.25

4.5.16

Fixed in WordPress 4.5.25

4.5.15

Fixed in WordPress 4.5.25

4.5.14

Fixed in WordPress 4.5.25

4.5.13

Fixed in WordPress 4.5.25

4.5.12

Fixed in WordPress 4.5.25

4.5.11

Fixed in WordPress 4.5.25

4.5.10

Fixed in WordPress 4.5.25

4.5.9

Fixed in WordPress 4.5.25

4.5.8

Fixed in WordPress 4.5.25

4.5.7

Fixed in WordPress 4.5.25

4.5.6

Fixed in WordPress 4.5.25

4.5.5

Fixed in WordPress 4.5.25

4.5.4

Fixed in WordPress 4.5.25

4.5.3

Fixed in WordPress 4.5.25

4.5.2

Fixed in WordPress 4.5.25

4.5.1

Fixed in WordPress 4.5.25

4.5

Fixed in WordPress 4.5.25

4.4.25

Fixed in WordPress 4.4.26

4.4.24

Fixed in WordPress 4.4.26

4.4.23

Fixed in WordPress 4.4.26

4.4.22

Fixed in WordPress 4.4.26

4.4.21

Fixed in WordPress 4.4.26

4.4.20

Fixed in WordPress 4.4.26

4.4.19

Fixed in WordPress 4.4.26

4.4.18

Fixed in WordPress 4.4.26

4.4.17

Fixed in WordPress 4.4.26

4.4.16

Fixed in WordPress 4.4.26

4.4.15

Fixed in WordPress 4.4.26

4.4.14

Fixed in WordPress 4.4.26

4.4.13

Fixed in WordPress 4.4.26

4.4.12

Fixed in WordPress 4.4.26

4.4.11

Fixed in WordPress 4.4.26

4.4.10

Fixed in WordPress 4.4.26

4.4.9

Fixed in WordPress 4.4.26

4.4.8

Fixed in WordPress 4.4.26

4.4.7

Fixed in WordPress 4.4.26

4.4.6

Fixed in WordPress 4.4.26

4.4.5

Fixed in WordPress 4.4.26

4.4.4

Fixed in WordPress 4.4.26

4.4.3

Fixed in WordPress 4.4.26

4.4.2

Fixed in WordPress 4.4.26

4.4.1

Fixed in WordPress 4.4.26

4.4

Fixed in WordPress 4.4.26

4.3.26

Fixed in WordPress 4.3.27

4.3.25

Fixed in WordPress 4.3.27

4.3.24

Fixed in WordPress 4.3.27

4.3.23

Fixed in WordPress 4.3.27

4.3.22

Fixed in WordPress 4.3.27

4.3.21

Fixed in WordPress 4.3.27

4.3.20

Fixed in WordPress 4.3.27

4.3.19

Fixed in WordPress 4.3.27

4.3.18

Fixed in WordPress 4.3.27

4.3.17

Fixed in WordPress 4.3.27

4.3.16

Fixed in WordPress 4.3.27

4.3.15

Fixed in WordPress 4.3.27

4.3.14

Fixed in WordPress 4.3.27

4.3.13

Fixed in WordPress 4.3.27

4.3.12

Fixed in WordPress 4.3.27

4.3.11

Fixed in WordPress 4.3.27

4.3.10

Fixed in WordPress 4.3.27

4.3.9

Fixed in WordPress 4.3.27

4.3.8

Fixed in WordPress 4.3.27

4.3.7

Fixed in WordPress 4.3.27

4.3.6

Fixed in WordPress 4.3.27

4.3.5

Fixed in WordPress 4.3.27

4.3.4

Fixed in WordPress 4.3.27

4.3.3

Fixed in WordPress 4.3.27

4.3.2

Fixed in WordPress 4.3.27

4.3.1

Fixed in WordPress 4.3.27

4.3

Fixed in WordPress 4.3.27

4.2.30

Fixed in WordPress 4.2.31

4.2.29

Fixed in WordPress 4.2.31

4.2.28

Fixed in WordPress 4.2.31

4.2.27

Fixed in WordPress 4.2.31

4.2.26

Fixed in WordPress 4.2.31

4.2.25

Fixed in WordPress 4.2.31

4.2.24

Fixed in WordPress 4.2.31

4.2.23

Fixed in WordPress 4.2.31

4.2.22

Fixed in WordPress 4.2.31

4.2.21

Fixed in WordPress 4.2.31

4.2.20

Fixed in WordPress 4.2.31

4.2.19

Fixed in WordPress 4.2.31

4.2.18

Fixed in WordPress 4.2.31

4.2.17

Fixed in WordPress 4.2.31

4.2.16

Fixed in WordPress 4.2.31

4.2.15

Fixed in WordPress 4.2.31

4.2.14

Fixed in WordPress 4.2.31

4.2.13

Fixed in WordPress 4.2.31

4.2.12

Fixed in WordPress 4.2.31

4.2.11

Fixed in WordPress 4.2.31

4.2.10

Fixed in WordPress 4.2.31

4.2.9

Fixed in WordPress 4.2.31

4.2.8

Fixed in WordPress 4.2.31

4.2.7

Fixed in WordPress 4.2.31

4.2.6

Fixed in WordPress 4.2.31

4.2.5

Fixed in WordPress 4.2.31

4.2.4

Fixed in WordPress 4.2.31

4.2.3

Fixed in WordPress 4.2.31

4.2.2

Fixed in WordPress 4.2.31

4.2.1

Fixed in WordPress 4.2.31

4.2

Fixed in WordPress 4.2.31

4.1.33

Fixed in WordPress 4.1.34

4.1.32

Fixed in WordPress 4.1.34

4.1.31

Fixed in WordPress 4.1.34

4.1.30

Fixed in WordPress 4.1.34

4.1.29

Fixed in WordPress 4.1.34

4.1.28

Fixed in WordPress 4.1.34

4.1.27

Fixed in WordPress 4.1.34

4.1.26

Fixed in WordPress 4.1.34

4.1.25

Fixed in WordPress 4.1.34

4.1.24

Fixed in WordPress 4.1.34

4.1.23

Fixed in WordPress 4.1.34

4.1.22

Fixed in WordPress 4.1.34

4.1.21

Fixed in WordPress 4.1.34

4.1.20

Fixed in WordPress 4.1.34

4.1.19

Fixed in WordPress 4.1.34

4.1.18

Fixed in WordPress 4.1.34

4.1.17

Fixed in WordPress 4.1.34

4.1.16

Fixed in WordPress 4.1.34

4.1.15

Fixed in WordPress 4.1.34

4.1.14

Fixed in WordPress 4.1.34

4.1.13

Fixed in WordPress 4.1.34

4.1.12

Fixed in WordPress 4.1.34

4.1.11

Fixed in WordPress 4.1.34

4.1.10

Fixed in WordPress 4.1.34

4.1.9

Fixed in WordPress 4.1.34

4.1.8

Fixed in WordPress 4.1.34

4.1.7

Fixed in WordPress 4.1.34

4.1.6

Fixed in WordPress 4.1.34

4.1.5

Fixed in WordPress 4.1.34

4.1.4

Fixed in WordPress 4.1.34

4.1.3

Fixed in WordPress 4.1.34

4.1.2

Fixed in WordPress 4.1.34

4.1.1

Fixed in WordPress 4.1.34

4.1

Fixed in WordPress 4.1.34

References

CVE

CVE-2022-21664

URL

https://github.com/WordPress/wordpress-develop/security/advisories/GHSA-jp3p-gw8h-6x86

Classification

Type

SQLI

OWASP top 10

A1: Injection

CWE

CWE-89

CVSS

6.8 (medium)

Miscellaneous

Original Researcher

Ben Bidner

Verified

Yes

WPVDB ID

24462ac4-7959-4575-97aa-a6dcceeae722

Timeline

Publicly Published

2022-01-06 (about 3 years ago)

Added

2022-01-06 (about 3 years ago)

Last Updated

2022-04-16 (about 3 years ago)

Other

Published

Title

Published

2021-02-08

Title

Contact Form by Supsystic < 1.7.11 - Authenticated SQL Injections

Published

2025-04-16

Title

Cost Calculator Builder < 3.2.68 - Unauthenticated SQL Injection

Published

2025-03-31

Title

Uptime Robot Plugin for WordPress <= 2.3 - Authenticated (Contributor+) SQL Injection

Published

2024-11-19

Title

MStore API < 4.15.8 - Authenticated (Subscriber+) SQL Injection

Published

2025-11-11

Title

Specific Content For Mobile – Customize the mobile version without redirections < 0.5.6 - Authenticated (Contributor+) SQL Injection