Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:36 a.m.11 views

CVE-2023-2843

The MultiParcels Shipping For WooCommerce WordPress plugin before 1.14.15 does not properly sanitize and escape a parameter before using it in an SQL statement, which could allow any authenticated users, such as subscribers, to perform SQL Injection attacks...

8.8CVSS7.6AI score0.00693EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2023/08/07 2:31 p.m.12 views

CVE-2023-2843 MultiParcels Shipping For WooCommerce < 1.14.15 - Subscribers+ SQLi

The MultiParcels Shipping For WooCommerce WordPress plugin before 1.14.15 does not properly sanitize and escape a parameter before using it in an SQL statement, which could allow any authenticated users, such as subscribers, to perform SQL Injection attacks...

7.6AI score0.00693EPSS
Exploits2References1
Cvelist
Cvelist
added 2023/08/07 2:31 p.m.27 views

CVE-2023-2843 MultiParcels Shipping For WooCommerce < 1.14.15 - Subscribers+ SQLi

The MultiParcels Shipping For WooCommerce WordPress plugin before 1.14.15 does not properly sanitize and escape a parameter before using it in an SQL statement, which could allow any authenticated users, such as subscribers, to perform SQL Injection attacks...

9.2AI score0.00693EPSS
Exploits2References1
CVE
CVE
added 2023/08/07 2:31 p.m.67 views

CVE-2023-2843

CVE-2023-2843 affects the MultiParcels Shipping For WooCommerce WordPress plugin, vulnerable in versions before 1.14.15. A parameter is not properly sanitized/escaped before being used in an SQL statement, allowing authenticated users (e.g., subscribers) to perform SQL Injection. Root cause: impr...

8.8CVSS8.9AI score0.00693EPSS
Exploits2References1Affected Software1
Patchstack
Patchstack
added 2023/07/18 12:0 a.m.14 views

WordPress MultiParcels Shipping For WooCommerce Plugin < 1.14.15 is vulnerable to SQL Injection

Software MultiParcels Shipping For WooCommerce Type Plugin Vulnerable versions 1.14.15 Fixed in 1.14.15 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-2843 Patch priority High CVSS severity High 8.5 Developer Claim ownership PSID 3e93313a1e18 Credits Dao Xuan Hieu Required...

8.8CVSS7.1AI score0.00693EPSS
Exploits2References4Affected Software1
Rows per page
Query Builder