Lucene search
GoogleOSV:CVE-2023-0630HistoryMar 20, 2023 - 4:15 p.m.
CVE-2023-0630
2023-03-2016:15:12
Google
osv.dev
6
wordpress
plugin
sql injection
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
7.7
Confidence
Low
EPSS
0.118
Percentile
95.4%
The Slimstat Analytics WordPress plugin before 4.9.3.3 does not prevent subscribers from rendering shortcodes that concatenates attributes directly into an SQL query.
Related
wpvulndb
wpvulndb
Slimstat Analytics < 4.9.3.3 - Subscriber+ SQL Injection
2023-02-27 00:00:00
cvelist
cvelist
CVE-2023-0630 Slimstat Analytics < 4.9.3.3 - Subscriber+ SQL Injection
2023-03-20 15:52:13
nvd
nvd
CVE-2023-0630
2023-03-20 16:15:12
openvas
openvas
WordPress Slimstat Analytics Plugin < 4.9.3.3 SQLi Vulnerability
2023-03-22 00:00:00
cve
cve
CVE-2023-0630
2023-03-20 16:15:12
githubexploit
githubexploit
Exploit for CVE-2023-0630
2023-06-09 12:02:55
wpexploit
wpexploit
Slimstat Analytics < 4.9.3.3 - Subscriber+ SQL Injection
2023-02-27 00:00:00
nuclei
nuclei
Slimstat Analytics < 4.9.3.3 Subscriber - SQL Injection
2023-06-16 00:22:58
prion
prion
Code injection
2023-03-20 16:15:00
wordfence
wordfence
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
7.7
Confidence
Low
EPSS
0.118
Percentile
95.4%
Related for OSV:CVE-2023-0630