Vulnerabilities & CVEs
CVE-2022-46818: SQL Injection Lets Attackers Raid WordPress Subscriber Lists
A sneaky SQL injection in the Email Posts to Subscribers plugin could hand attackers your full subscriber database. CVE-2022-46818 isn't new, but unpatched sites are sitting ducks.