Lucene search
HistoryMar 22, 2023 - 9:15 p.m.
CVE-2023-28663
cve-2023-28663
formidable pro2pdf
wordpress plugin
authenticated
sql injection
vulnerability
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
31.2%
The Formidable PRO2PDF WordPress Plugin, version < 3.11, is affected by an authenticated SQL injection vulnerability in the ‘fieldmap’ parameter in the fpropdf_export_file action.
Affected configurations
Node
formidablepro2pdfformidable_pro2pdfRange<3.11wordpress
| CPE | Name | Operator | Version |
|---|---|---|---|
| formidablepro2pdf:formidable_pro2pdf | formidablepro2pdf formidable pro2pdf | lt | 3.11 |
CNA Affected
[
{
"vendor": "n/a",
"product": "Formidable PRO2PDF WordPress Plugin",
"versions": [
{
"version": "< 3.11",
"status": "affected"
}
]
}
]Related
wpvulndb
wpvulndb
Formidable PRO2PDF < 3.11 - Subscriber+ SQLi
2023-03-22 00:00:00
prion
prion
Sql injection
2023-03-22 21:15:00
nvd
nvd
CVE-2023-28663
2023-03-22 21:15:18
openvas
openvas
WordPress Formidable PRO2PDF Plugin < 3.10 SQLi Vulnerability
2023-09-12 00:00:00
cvelist
cvelist
CVE-2023-28663
2023-03-22 00:00:00
wpexploit
wpexploit
Formidable PRO2PDF < 3.11 - Subscriber+ SQLi
2023-03-22 00:00:00
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
31.2%
Related for CVE-2023-28663