logo
Vulnerability feed
CONTRIBUTE

Vulnerability

warn

CVE-2023-2655

Reference to the description:

https://nvd.nist.gov/vuln/detail/CVE-2023-2655

Description:
The Contact Form by WD WordPress plugin through 1.13.23 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin
Last updated date:
01/23/2024
Type:
exploit
Confidence:
HIGH
Date of publishing:
01/23/2024
Reference url to background

https://wpscan.com/vulnerability/b3f2d38f-8eeb-45e9-bb58-2957e416e1cd/

Vulnerability FeedContributorsAboutBlog

@inTheWild

©2024

Privacy Policy