2 matches found
CVE-2023-2229
CVE-2023-2229 affects the WordPress Quick Post Duplicator (rduplicator) up to version 2.0. The root cause is an SQL Injection via the post_id parameter due to insufficient escaping and lack of prepared statements, enabling authenticated attackers with contributor privileges to append additional S...
WordPress Quick Post Duplicator Plugin <= 2.0 is vulnerable to SQL Injection
Software Quick Post Duplicator Type Plugin Vulnerable versions = 2.0 Fixed in N/A OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-2229 Patch priority High CVSS severity High 8.8 Developer Claim ownership PSID 82cd33300670 Credits Marco Wotschka Required privilege Contributor...