CVE-2022-44580: WordPress Plugin for Google Reviews Plugin <= 2.2.3 is vulnerable to SQL Injection
First published: Wed Mar 15 2023(Updated: )
SQL Injection (SQLi) vulnerability in RichPlugins Plugin for Google Reviews plugin <= 2.2.3 versions.
Credit: audit@patchstack.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Richplugins Plugin For Google Reviews | <=2.2.3 |
Remedy
Update to 2.2.4 or a higher version.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2022-44580?
CVE-2022-44580 is classified as a critical SQL Injection vulnerability that can lead to unauthorized access to the database.
How do I fix CVE-2022-44580?
To remediate CVE-2022-44580, update the RichPlugins Plugin for Google Reviews to version 2.2.4 or higher.
What versions are affected by CVE-2022-44580?
CVE-2022-44580 affects RichPlugins Plugin for Google Reviews versions 2.2.3 and earlier.
What type of attack does CVE-2022-44580 enable?
CVE-2022-44580 enables SQL Injection attacks that could allow attackers to execute arbitrary SQL queries.
Is CVE-2022-44580 a known exploit?
As of now, CVE-2022-44580 is known to be exploited in the wild, making it imperative to apply the necessary updates.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- agent/severity
- agent/references
- agent/remedy
- agent/title
- agent/author
- agent/weakness
- agent/description
- agent/first-publish-date
- agent/event
- agent/tags
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- vendor/richplugins
- canonical/richplugins plugin for google reviews
- version/richplugins plugin for google reviews/2.2.3