Lucene search
HistoryDec 04, 2023 - 10:15 p.m.
CVE-2023-6063
sql injection
wordpress
unauthenticated users
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.127
Percentile
95.6%
The WP Fastest Cache WordPress plugin before 1.2.2 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by unauthenticated users.
Affected configurations
Node
wpfastestcachewp_fastest_cacheRange<1.2.2wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| wpfastestcache | wp_fastest_cache | * | cpe:2.3:a:wpfastestcache:wp_fastest_cache:*:*:*:*:*:wordpress:*:* |
Related
prion
prion
Sql injection
2023-12-04 22:15:00
cvelist
cvelist
CVE-2023-6063 WP Fastest Cache < 1.2.2 - Unauthenticated SQL Injection
2023-12-04 21:29:41
zdt
zdt
WordPress WP Fastest Cache 1.2.2 SQL Injection Vulnerability
2024-02-28 00:00:00
cve
cve
CVE-2023-6063
2023-12-04 22:15:08
nuclei
nuclei
WP Fastest Cache 1.2.2 - SQL Injection
2024-01-14 13:20:23
packetstorm
packetstorm
WordPress WP Fastest Cache 1.2.2 SQL Injection
2024-02-28 00:00:00
wpvulndb
wpvulndb
WP Fastest Cache < 1.2.2 - Unauthenticated SQL Injection
2023-11-13 00:00:00
openvas
openvas
WordPress Fastest Cache Plugin < 1.2.2 SQLi Vulnerability
2023-11-17 00:00:00
wpexploit
wpexploit
WP Fastest Cache < 1.2.2 - Unauthenticated SQL Injection
2023-11-13 00:00:00
exploitdb
exploitdb
WP Fastest Cache 1.2.2 - Unauthenticated SQL Injection
2024-02-28 00:00:00
wordfence
wordfence
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.127
Percentile
95.6%
Related for NVD:CVE-2023-6063