3 matches found
CVE-2023-23490
The Survey Maker WordPress Plugin, version 3.1.2, is affected by an authenticated SQL injection vulnerability in the 'surveysids' parameter of its 'ayssurveysexportjson' action...
CVE-2023-23490
The CVE concerns WordPress Survey Maker Plugin before 3.1.2, with an authenticated SQL injection vulnerability in the surveys_ids parameter of the ays_surveys_export_json action. Root cause is improper handling of the surveys_ids input, enabling total impact on confidentiality, integrity, and ava...
WordPress Survey Maker Plugin <= 3.1.1 is vulnerable to SQL Injection
Software Survey Maker Type Plugin Vulnerable versions = 3.1.1 Fixed in 3.1.2 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-23490 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID a63e02c814d8 Credits Joshua Martinelle Required privilege Subscriber...