← voltar
CVE-2023-5108

Easy Newsletter Signups <= 1.0.4 - Admin+ SQLi

EPSS 1.0%
The Easy Newsletter Signups WordPress plugin through 1.0.4 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin
Produtos afetados
Unknown · Easy Newsletter Signups

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://wpscan.com/vulnerability/1b277929-e88b-4ab6-9190-526e75f5ce7a