2 matches found
CVE-2023-5429
CVE-2023-5429 affects the WordPress plugin Information Reel. The vulnerability is a SQL Injection via the plugin’s shortcode caused by insufficient escaping of user-supplied parameters and inadequate preparation of the SQL query. It enables authenticated attackers with subscriber-level permission...
WordPress Information Reel Plugin <= 10.0 is vulnerable to SQL Injection
Software Information Reel Type Plugin Vulnerable versions = 10.0 Fixed in 10.1 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-5429 Patch priority Low CVSS severity Low 8.5 Developer Claim ownership PSID c905ec2711b0 Credits István Márton Required privilege Contributor...