Lucene search
WPScanCVELIST:CVE-2023-0600HistoryMay 15, 2023 - 12:15 p.m.
CVE-2023-0600 WP Visitor Statistics (Real Time Traffic) < 6.9 - Unauthenticated SQLi
2023-05-1512:15:31
WPScan
www.cve.org
wordpress
sql injection
unauthenticated
cve-2023-0600
plugin security
0.049 Low
EPSS
Percentile
92.8%
The WP Visitor Statistics (Real Time Traffic) WordPress plugin before 6.9 does not escape user input which is concatenated to an SQL query, allowing unauthenticated visitors to conduct SQL Injection attacks.
CNA Affected
[
{
"vendor": "Unknown",
"product": "WP Visitor Statistics (Real Time Traffic)",
"versions": [
{
"status": "affected",
"versionType": "custom",
"version": "0",
"lessThan": "6.9"
}
],
"defaultStatus": "unaffected",
"collectionURL": "https://wordpress.org/plugins"
}
]Related
nvd
nvd
CVE-2023-0600
2023-05-15 13:15:09
wpvulndb
wpvulndb
WP Visitor Statistics (Real Time Traffic) < 6.9 - Unauthenticated SQLi
2023-04-24 00:00:00
wpexploit
wpexploit
WP Visitor Statistics (Real Time Traffic) < 6.9 - Unauthenticated SQLi
2023-04-24 00:00:00
cve
cve
CVE-2023-0600
2023-05-15 13:15:09
prion
prion
Sql injection
2023-05-15 13:15:00
nuclei
nuclei
WP Visitor Statistics (Real Time Traffic) < 6.9 - SQL Injection
2023-10-17 07:20:28
wordfence
wordfence