CVE-2022-1692

CRITICAL NUCLEI

Dwbooster CP Image Store With Slideshow < 1.0.68 - SQL Injection

Title source: rule

Description

The CP Image Store with Slideshow WordPress plugin before 1.0.68 does not sanitise and escape the ordering_by query parameter before using it in a SQL statement in pages where the [codepeople-image-store] is embed, allowing unauthenticated users to perform an SQL injection attack

Nuclei Templates (1)

CP Image Store with Slideshow <= 1.0.67 - SQL Injection

CRITICALVERIFIEDby Shivam Kamboj

References (2)

[Exploit, Third Party Advisory] https://bulletin.iese.de/post/cp-image-store_1-0-67

[Exploit, Third Party Advisory] https://wpscan.com/vulnerability/83bae80c-f583-4d89-8282-e6384bbc7571

Scores

CVSS v3 9.8

EPSS 0.7345

EPSS Percentile 98.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-89

Status published

Products (1)

dwbooster/cp_image_store_with_slideshow < 1.0.68

Published Jun 08, 2022

Tracked Since Feb 18, 2026