Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
WordPress Plugin Build App Online SQL Injection - CVE-2022-3241 - Vulnerability Database
WP Plugin Build App Online

WordPress Plugin Build App Online SQL Injection - CVE-2022-3241

Critical
Reference: CVE-2022-3241
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2022-3241
Title: WordPress Plugin Build App Online SQL Injection
Overview:

WordPress Plugin Build App Online is prone to an SQL injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application access or modify data or exploit latent vulnerabilities in the underlying database. WordPress Plugin Build App Online version 1.0.18 is vulnerable prior versions may also be affected.