CVE-2022-1950 – The Youzify WordPress plugin before 1.2.0 does not sanitise and escape a parameter before …

Vuln ID: CVE-2022-1950

Published:  2022-08-01  13:15:10Z

Description: The Youzify WordPress plugin before 1.2.0 does not sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to an unauthenticated SQL injection

Source: NVD.NIST.GOV