CVE-2023-1471
CVE-2023-1471 concerns the WordPress plugin WP Popup Banners up to version 1.2.5 . The vulnerability is an SQL Injection via the banner_id parameter caused by insufficient escaping and inadequate query preparation. An authenticated attacker with minimal privileges (e.g., a subscriber) can inject ...