CVE-2023-0630

Slimstat Analytics < 4.9.3.3 - Subscriber+ SQL Injection

EPSS 5.1%CWE-89

The Slimstat Analytics WordPress plugin before 4.9.3.3 does not prevent subscribers from rendering shortcodes that concatenates attributes directly into an SQL query.

Productos afectados

Unknown · Slimstat Analytics

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://wpscan.com/vulnerability/b82bdd02-b699-4527-86cc-d60b56ab0c55