The Slimstat Analytics WordPress plugin before 4.9.3.3 does not prevent subscribers from rendering shortcodes that concatenates attributes directly into an SQL query.
CVSS
No CVSS.
References
Advertisement
Configurations
No configuration.
Information
Published : 2023-03-20 09:15
Updated : 2023-03-21 04:51
NVD link : CVE-2023-0630
Mitre link : CVE-2023-0630
JSON object : View
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Advertisement
Products Affected
No product.