CVE-2023-0630

Slimstat Analytics < 4.9.3.3 - Subscriber+ SQL Injection

EPSS 5.1%CWE-89

The Slimstat Analytics WordPress plugin before 4.9.3.3 does not prevent subscribers from rendering shortcodes that concatenates attributes directly into an SQL query.

Produtos afetados

Unknown · Slimstat Analytics

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://wpscan.com/vulnerability/b82bdd02-b699-4527-86cc-d60b56ab0c55