Lucene search
PatchstackCVELIST:CVE-2023-23651HistoryOct 12, 2023 - 11:26 a.m.
CVE-2023-23651 WordPress MainWP Google Analytics Extension Plugin <= 4.0.4 - SQL Injection vulnerability
2023-10-1211:26:03
CWE-89
Patchstack
www.cve.org
2
cve-2023-23651
wordpress
mainwp google analytics
sql injection
subscriber+
CVSS3
8.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L
AI Score
9.3
Confidence
High
EPSS
0.001
Percentile
25.6%
Auth. (subscriber+) SQL Injection (SQLi) vulnerability in MainWP Google Analytics ExtensionΒ plugin <= 4.0.4 versions.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "MainWP Google Analytics Extension",
"vendor": "MainWP",
"versions": [
{
"changes": [
{
"at": "4.0.5",
"status": "unaffected"
}
],
"lessThanOrEqual": "4.0.4",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
vulnrichment
vulnrichment
prion
prion
Sql injection
2023-10-12 12:15:00
nvd
nvd
CVE-2023-23651
2023-10-12 12:15:10
cve
cve
CVE-2023-23651
2023-10-12 12:15:10
CVSS3
8.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L
AI Score
9.3
Confidence
High
EPSS
0.001
Percentile
25.6%
Related for CVELIST:CVE-2023-23651