First published: Tue Nov 15 2022(Updated: )
WoWonder Social Network Platform v4.1.2 was discovered to contain a SQL injection vulnerability via the offset parameter at requests.php?f=load-my-blogs.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Wowonder Wowonder | =4.1.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this issue is CVE-2022-40405.
The severity of CVE-2022-40405 is high with a severity value of 7.5.
CVE-2022-40405 affects WoWonder Social Network Platform version 4.1.2.
The SQL injection vulnerability in CVE-2022-40405 can be exploited via the offset parameter at requests.php?f=load-my-blogs.
Yes, it is recommended to update WoWonder Social Network Platform to a version without the SQL injection vulnerability.