Lucene search
PatchstackCVE-2023-51469HistoryDec 31, 2023 - 6:15 p.m.
CVE-2023-51469
2023-12-3118:15:51
CWE-89
Patchstack
web.nvd.nist.gov
28
cve-2023
improper neutralization
sql injection
mestres do wp
checkout mestres wp
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.8
Confidence
High
EPSS
0.001
Percentile
33.0%
Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in Mestres do WP Checkout Mestres WP.This issue affects Checkout Mestres WP: from n/a through 7.1.9.6.
Affected configurations
Node
mestresdowpcheckout_mestres_wpRange≤7.1.9.6wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| mestresdowp | checkout_mestres_wp | * | cpe:2.3:a:mestresdowp:checkout_mestres_wp:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "checkout-mestres-wp",
"product": "Checkout Mestres WP",
"vendor": "Mestres do WP",
"versions": [
{
"lessThanOrEqual": "7.1.9.6",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
prion
prion
Sql injection
2023-12-31 18:15:00
wpvulndb
wpvulndb
Checkout Mestres WP < 7.1.9.8 - Unauthenticated SQL Injection
2024-01-05 00:00:00
cvelist
cvelist
vulnrichment
vulnrichment
nvd
nvd
CVE-2023-51469
2023-12-31 18:15:51
wordfence
wordfence
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.8
Confidence
High
EPSS
0.001
Percentile
33.0%
Related for CVE-2023-51469