CVE-2022-3150 Information

Description

The WP Custom Cursors WordPress plugin through 3.0 does not properly sanitise and escape a parameter before using it in a SQL statement leading to a SQL injection exploitable by high privileged users such as admin

Reference

https://wpscan.com/vulnerability/bb0806d7-21e3-4a65-910c-bf0625c338ec