Lucene search
TenableCVELIST:CVE-2023-23492HistoryJan 20, 2023 - 12:00 a.m.
CVE-2023-23492
2023-01-2000:00:00
tenable
www.cve.org
1
wordpress
sql injection
phone number
The Login with Phone Number WordPress Plugin, version < 1.4.2, is affected by an authenticated SQL injection vulnerability in the ‘ID’ parameter of its ‘lwp_forgot_password’ action.
CNA Affected
[
{
"vendor": "n/a",
"product": "Login with Phone Number WordPress Plugin",
"versions": [
{
"version": "< 1.4.2",
"status": "affected"
}
]
}
]Related
cve
cve
CVE-2023-23492
2023-01-20 19:15:18
nvd
nvd
CVE-2023-23492
2023-01-20 19:15:18
prion
prion
Sql injection
2023-01-20 19:15:00
nuclei
nuclei
Login with Phone Number - Cross-Site Scripting
2023-03-05 13:42:10
wpvulndb
wpvulndb
Login with Phone Number < 1.4.2 - Reflected Cross-Site Scripting
2023-01-12 00:00:00
openvas
openvas
WordPress Login with Phone Number Plugin < 1.4.2 XSS Vulnerability
2023-08-28 00:00:00
wpexploit
wpexploit
Login with Phone Number < 1.4.2 - Reflected Cross-Site Scripting
2023-01-12 00:00:00