Lucene search

CVE-2023-23489

🗓️ 20 Jan 2023 18:10:15Reported by tenableType

The Easy Digital Downloads WordPress Plugin3.1.0.2 & 3.1.0.3, unauthenticated SQL injection vulnerability in 's' paramete

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 9
Nuclei	WordPress Easy Digital Downloads 3.1.0.2/3.1.0.3 - SQL Injection	12 Feb 202307:21	–	nuclei
WPVulnDB	Easy Digital Downloads 3.1.0.2 & 3.1.0.3 - Unauthenticated SQLi	12 Jan 202300:00	–	wpvulndb
NVD	CVE-2023-23489	20 Jan 202318:15	–	nvd
Patchstack	WordPress Easy Digital Downloads Plugin <= 3.1.0.3 is vulnerable to SQL Injection	14 Jan 202300:00	–	patchstack
wpexploit	Easy Digital Downloads 3.1.0.2 & 3.1.0.3 - Unauthenticated SQLi	12 Jan 202300:00	–	wpexploit
Prion	Sql injection	20 Jan 202318:15	–	prion
Vulnrichment	CVE-2023-23489	20 Jan 202300:00	–	vulnrichment
OpenVAS	WordPress Easy Digital Downloads Plugin 3.1.0.2 - 3.1.0.3 SQLi Vulnerability	5 Sep 202300:00	–	openvas
Cvelist	CVE-2023-23489	20 Jan 202300:00	–	cvelist

Nvd

Node

sandhillsdev easy_digital_downloadsRange<3.1.0.4wordpress

[
  {
    "vendor": "n/a",
    "product": "Easy Digital Downloads WordPress Plugin",
    "versions": [
      {
        "version": "< 3.1.0.4",
        "status": "affected"
      }
    ]
  }
]

Source	Link
tenable	www.tenable.com/security/research/tra-2023-2

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

20 Jan 2023 18:15Current

9.9High risk

Vulners AI Score9.9

CVSS39.8

EPSS0.83311

SSVC

CWE-89