Lucene search
HistoryDec 31, 2023 - 5:15 p.m.
CVE-2023-52134
cve-2023-52134
improper neutralization
special elements
sql command
eyal fitoussi
geo my wordpress
CVSS3
7.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
19.3%
Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in Eyal Fitoussi GEO my WordPress.This issue affects GEO my WordPress: from n/a through 4.0.2.
Affected configurations
Node
geomywpgeo_my_wordpressRange≤4.0.2wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| geomywp | geo_my_wordpress | * | cpe:2.3:a:geomywp:geo_my_wordpress:*:*:*:*:*:wordpress:*:* |
Related
wpvulndb
wpvulndb
GEO my WordPress < 4.0.3 - Authenticated(Administrator+) SQL Injection
2024-01-05 00:00:00
prion
prion
Sql injection
2023-12-31 17:15:00
cvelist
cvelist
cve
cve
CVE-2023-52134
2023-12-31 17:15:08
wordfence
wordfence
CVSS3
7.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
19.3%
Related for NVD:CVE-2023-52134