Lucene search
HistoryDec 18, 2023 - 11:15 p.m.
CVE-2023-47506
sql injection
master slider pro
vulnerability
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
19.3%
Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in Master slider Master Slider Pro allows SQL Injection.This issue affects Master Slider Pro: from n/a through 3.6.5.
Affected configurations
Node
masterslidermaster_sliderRange≤3.6.5prowordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| masterslider | master_slider | * | cpe:2.3:a:masterslider:master_slider:*:*:*:*:pro:wordpress:*:* |
Related
cvelist
cvelist
cve
cve
CVE-2023-47506
2023-12-18 23:15:07
prion
prion
Sql injection
2023-12-18 23:15:00
wpvulndb
wpvulndb
Master Slider Pro <= 3.6.5 - Authenticated (Editor+) SQL Injection
2023-11-23 00:00:00
wordfence
wordfence
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
19.3%
Related for NVD:CVE-2023-47506