4 matches found
CVE-2023-1207
This HTTP Headers WordPress plugin before 1.18.8 has an import functionality which executes arbitrary SQL on the server, leading to an SQL Injection vulnerability...
CVE-2023-1207
CVE-2023-1207 affects the HTTP Headers WordPress plugin, prior to version 1.18.8. The import feature can execute arbitrary SQL on the server, causing an SQL Injection vulnerability. Public sources (NVD/Red Hat/Patchstack) confirm the issue and indicate a patch: update to 1.18.8 or later to mitiga...
CVE-2023-1207 HTTP Headers < 1.18.8 - Admin+ SQL Injection
This HTTP Headers WordPress plugin before 1.18.8 has an import functionality which executes arbitrary SQL on the server, leading to an SQL Injection vulnerability...
WordPress HTTP Headers Plugin < 1.18.8 is vulnerable to SQL Injection
Software HTTP Headers Type Plugin Vulnerable versions 1.18.8 Fixed in 1.18.8 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-1207 Patch priority Low CVSS severity Low 6.6 Developer Claim ownership PSID 4e6306d4524c Credits qerogramat Kakao Style Corp. Required privilege...