The SiteGround Security WordPress plugin before 1.3.1 does not properly sanitize user input before using it in an SQL query, leading to an authenticated SQL injection issue.
References
Link | Resource |
---|---|
https://github.com/namah-age/CVEs/blob/master/1.md | Third Party Advisory |
https://wpscan.com/vulnerability/acf3e369-1290-4b3f-83bf-2209b9dd06e1 | Exploit Third Party Advisory |
https://www.siteground.com/viewtos/responsible_disclosure_policy?scid=4&lang=en | Issue Tracking |
Configurations
History
07 Nov 2023, 03:59
Type | Values Removed | Values Added |
---|---|---|
CWE |
Information
Published : 2023-02-06 20:15
Updated : 2024-02-28 19:51
NVD link : CVE-2023-0234
Mitre link : CVE-2023-0234
CVE.ORG link : CVE-2023-0234
JSON object : View
Products Affected
siteground
- siteground_security
CWE
No CWE.