5 matches found
CVE-2023-0259
The WP Google Review Slider WordPress plugin before 11.8 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as subscriber...
CVE-2023-0259
The WP Google Review Slider WordPress plugin before 11.8 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as subscriber...
CVE-2023-0259 WP Google Review Slider < 11.8 - Subscriber+ SQLi
The WP Google Review Slider WordPress plugin before 11.8 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as subscriber...
CVE-2023-0259
The CVE-2023-0259 entry concerns the WP Google Review Slider WordPress plugin, version(s) prior to 11.8. The vulnerability stems from improper sanitization/escaping of a parameter before it is used in a SQL statement, enabling SQL injection. It is exploitable by users with a role as low as subscr...
WordPress WP Google Review Slider Plugin < 11.8 is vulnerable to SQL Injection
Software WP Google Review Slider Type Plugin Vulnerable versions 11.8 Fixed in 11.8 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-0259 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 34cf745daa82 Credits István Márton Required privilege Subscriber...