Lucene search
K

5 matches found

Circl
Circl
added 2025/06/06 8:48 a.m.39 views

CVE-2023-2921

creationtimestamp| type| source ---|---|--- 2025-06-06 08:48:24+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqwh7jxxmp2o...

8.8CVSS7AI score0.00366EPSS
Exploits1References1
NVD
NVD
added 2025/06/06 6:15 a.m.11 views

CVE-2023-2921

The Short URL WordPress plugin through 1.6.8 does not properly sanitise and escape a parameter before using it in SQL statement, leading to a SQL injection exploitable by users with relatively low privilege on the site, like subscribers...

8.8CVSS0.00366EPSS
Exploits1References1
OSV
OSV
added 2025/06/06 6:15 a.m.5 views

CVE-2023-2921

The Short URL WordPress plugin through 1.6.8 does not properly sanitise and escape a parameter before using it in SQL statement, leading to a SQL injection exploitable by users with relatively low privilege on the site, like subscribers...

8.8CVSS5.8AI score0.00366EPSS
Exploits1References1
CVE
CVE
added 2025/06/06 6:0 a.m.82 views

CVE-2023-2921

The CVE-2023-2921 entry concerns the WordPress Short URL plugin (versions ≤ 1.6.8). A parameter is not properly sanitised/escaped before its use in an SQL statement, enabling SQL injection. Impact is stated as exploitable by users with low privileges (e.g., subscribers). Affected component is the...

8.8CVSS7.6AI score0.00366EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2025/06/06 6:0 a.m.11 views

CVE-2023-2921 Short URL <= 1.6.8 - Subscriber+ SQLi

The Short URL WordPress plugin through 1.6.8 does not properly sanitise and escape a parameter before using it in SQL statement, leading to a SQL injection exploitable by users with relatively low privilege on the site, like subscribers...

0.00366EPSS
Exploits1References1
Rows per page
Query Builder