The SiteGround Security WordPress plugin before 1.3.1 does not properly sanitize user input before using it in an SQL query, leading to an authenticated SQL injection issue.
References
Link | Resource |
---|---|
https://github.com/namah-age/CVEs/blob/master/1.md | Third Party Advisory |
https://wpscan.com/vulnerability/acf3e369-1290-4b3f-83bf-2209b9dd06e1 | Exploit Third Party Advisory |
https://www.siteground.com/viewtos/responsible_disclosure_policy?scid=4&lang=en | Issue Tracking |
https://github.com/namah-age/CVEs/blob/master/1.md | Third Party Advisory |
https://wpscan.com/vulnerability/acf3e369-1290-4b3f-83bf-2209b9dd06e1 | Exploit Third Party Advisory |
https://www.siteground.com/viewtos/responsible_disclosure_policy?scid=4&lang=en | Issue Tracking |
Configurations
History
21 Nov 2024, 07:36
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/namah-age/CVEs/blob/master/1.md - Third Party Advisory | |
References | () https://wpscan.com/vulnerability/acf3e369-1290-4b3f-83bf-2209b9dd06e1 - Exploit, Third Party Advisory | |
References | () https://www.siteground.com/viewtos/responsible_disclosure_policy?scid=4&lang=en - Issue Tracking |
07 Nov 2023, 03:59
Type | Values Removed | Values Added |
---|---|---|
CWE |
Information
Published : 2023-02-06 20:15
Updated : 2024-11-21 07:36
NVD link : CVE-2023-0234
Mitre link : CVE-2023-0234
CVE.ORG link : CVE-2023-0234
JSON object : View
Products Affected
siteground
- siteground_security
CWE
No CWE.