Lucene search
K

CVE-2023-0224

๐Ÿ—“๏ธย 16 Jan 2024ย 15:54:45Reported byย WPScanTypeย 
cve
ย cve
๐Ÿ”—ย web.nvd.nist.gov๐Ÿ‘ย 91ย Views๐ŸŒ WEB

The GiveWP WordPress plugin pre-2.24.1 allows SQL Injectio

Related
Detection
Affected
Refs
Paths
ReporterTitlePublishedViews
Family
Circl
CVE-2023-0224
22 Jan 202423:16
โ€“circl
CNNVD
WordPress plugin GiveWP ๅฎ‰ๅ…จๆผๆดž
30 Jan 202300:00
โ€“cnnvd
Cvelist
CVE-2023-0224 GiveWP < 2.24.1 - Unauthenticated SQLi
16 Jan 202415:54
โ€“cvelist
EUVD
EUVD-2023-12310
3 Oct 202520:07
โ€“euvd
NVD
CVE-2023-0224
16 Jan 202416:15
โ€“nvd
OSV
CVE-2023-0224
16 Jan 202416:15
โ€“osv
Patchstack
WordPress GiveWP Plugin <= 2.23.2 is vulnerable to SQL Injection
18 Jan 202300:00
โ€“patchstack
Prion
Sql injection
16 Jan 202416:15
โ€“prion
Positive Technologies
PT-2024-11920 ยท WordPress ยท Givewp
16 Jan 202400:00
โ€“ptsecurity
RedhatCVE
CVE-2023-0224
23 May 202502:51
โ€“redhatcve
Rows per page
NVD
Vulners
Node
givewpgivewpRange<2.24.1wordpress
[
  {
    "vendor": "Unknown",
    "product": "GiveWP",
    "versions": [
      {
        "status": "affected",
        "versionType": "semver",
        "version": "0",
        "lessThan": "2.24.1"
      }
    ],
    "defaultStatus": "unaffected",
    "collectionURL": "https://wordpress.org/plugins"
  }
]
ParameterPositionPathDescriptionCWE
datarequest body/wp-admin/admin-ajax.phpUnauthenticated SQL injection via admin-ajax.php using crafted data parameter to trigger UNION/SELECT sleep payloadCWE-89
actionrequest body/wp-admin/admin-ajax.phpUnauthenticated SQL injection via admin-ajax.php using crafted data parameter to trigger UNION/SELECT sleep payloadCWE-89
noncerequest body/wp-admin/admin-ajax.phpUnauthenticated SQL injection via admin-ajax.php using crafted data parameter to trigger UNION/SELECT sleep payloadCWE-89

Data

Build on a solid foundation withย Vulners data

Weย provide theย essential building blocks forย cybersecurity solutions withย comprehensive, structured, andย constantly updated vulnerability andย exploits data

Api

Power your application withย Vulners API

The Vulners REST API offers reliable, high-performance access toย vulnerabilityย intelligence, withย 99.9%ย SLAย uptime andย CDN-backed data delivery forย seamlessย global access

App

Assess and manage vulnerabilities withย Vulnersย tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 05:25Current
9.9High risk
Vulners AI Score9.9
CVSS 3.19.8
EPSS0.03742
SSVC
91