CVE-2023-5466
CVE-2023-5466 affects the WordPress plugin WP Anything Slider, up to version 9.1. The issue is an SQL Injection due to insufficient escaping of user-supplied shortcode parameters and lack of proper query preparation, enabling authenticated attackers with subscriber-level+ permissions to inject ad...