CVE-2023-2719 SupportCandy < 3.1.7 - Subscriber+ SQLi

2023-06-1910:52:42

WPScan

www.cve.org

cve-2023-2719; supportcandy; sql injection; wordpress plugin; rest api; sqli; subscriber role

0.001 Low

EPSS

Percentile

26.3%

JSON

The SupportCandy WordPress plugin before 3.1.7 does not properly sanitise and escape the id parameter for an Agent in the REST API before using it in an SQL statement, leading to an SQL Injection exploitable by users with a role as low as Subscriber.

CNA Affected

[
  {
    "vendor": "Unknown",
    "product": "SupportCandy",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "3.1.7"
      }
    ],
    "defaultStatus": "unaffected",
    "collectionURL": "https://wordpress.org/plugins"
  }
]

References

wpscan.com/vulnerability/d9f6f4e7-a237-49c0-aba0-2934ab019e35

0.001 Low

EPSS

Percentile

26.3%

JSON

Related for CVELIST:CVE-2023-2719