CVE-2023-0278 in GeoDirectory Plugininformação

Sumário

de MITRE • 27/02/2023

The GeoDirectory WordPress plugin before 2.2.24 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservar

13/01/2023

Divulgação

27/02/2023

Moderação

aceite

Entrada

VDB-220213

CPE

pronto

EPSS

0.00764

KEV

não

Atividades

muito baixo

Fontes

Want to stay up to date on a daily basis?

Enable the mail alert feature now!