3 matches found
CVE-2023-49825
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in PenciDesign Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme.This issue affects Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme: from n/a through 8.4.1...
CVE-2023-49825
CVE-2023-49825 concerns an SQL Injection in the Soledad WordPress Theme (Soledad – Multipurpose, Newspaper, Blog & WooCommerce) by PenciDesign. Affected versions are 8.4.1 and earlier (described as n/a to 8.4.1). Root cause: improper neutralization/escaping of input elements used in SQL queries. ...
WordPress Soledad Theme <= 8.4.1 is vulnerable to SQL Injection
Software Soledad Type Theme Vulnerable versions = 8.4.1 Fixed in 8.4.2 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2023-49825 Patch priority Medium CVSS severity Medium 8.5 Developer Claim ownership PSID a78a84399460 Credits Rafie Muhammad Patchstack Required privilege...