2.1.22

DATE	CVE	VULNERABILITY TITLE	RISK
2023-10-16	CVE-2023-4776	SQL Injection vulnerability in Igexsolutions Wpschoolpress The School Management System WordPress plugin before 2.2.5 uses the WordPress esc_sql() function on a field not delimited by quotes and did not first prepare the query, leading to a SQL injection exploitable by relatively low-privilege users like Teachers. network low complexity igexsolutions CWE-89	8.8