Lucene search
PatchstackCVELIST:CVE-2023-50854HistoryDec 28, 2023 - 11:21 a.m.
CVE-2023-50854 WordPress Squirrly SEO - Advanced Pack Plugin <= 2.3.8 is vulnerable to SQL Injection
2023-12-2811:21:59
CWE-89
Patchstack
www.cve.org
4
wordpress
squirrly seo
sql injection
cve-2023-50854
CVSS3
7.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:L
EPSS
0.001
Percentile
19.3%
Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in Squirrly Squirrly SEO - Advanced Pack.This issue affects Squirrly SEO - Advanced Pack: from n/a through 2.3.8.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Squirrly SEO - Advanced Pack",
"vendor": "Squirrly",
"versions": [
{
"lessThanOrEqual": "2.3.8",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2023-50854
2023-12-28 12:15:43
wpvulndb
wpvulndb
prion
prion
Sql injection
2023-12-28 12:15:00
cve
cve
CVE-2023-50854
2023-12-28 12:15:43
wordfence
wordfence
CVSS3
7.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:L
EPSS
0.001
Percentile
19.3%
Related for CVELIST:CVE-2023-50854