CVE-2023-52142

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Cool Plugins Events Shortcodes For The Events Calendar.This issue affects Events Shortcodes For The Events Calendar: from n/a through 2.3.1.
Configurations

Configuration 1 (hide)

cpe:2.3:a:coolplugins:events_shortcodes_for_the_events_calendar:*:*:*:*:*:wordpress:*:*

History

12 Jan 2024, 17:20

Type Values Removed Values Added
First Time Coolplugins events Shortcodes For The Events Calendar
Coolplugins
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 8.8
CPE cpe:2.3:a:coolplugins:events_shortcodes_for_the_events_calendar:*:*:*:*:*:wordpress:*:*
References () https://patchstack.com/database/vulnerability/template-events-calendar/wordpress-events-shortcodes-for-the-events-calendar-plugin-2-3-1-sql-injection-vulnerability?_s_id=cve - () https://patchstack.com/database/vulnerability/template-events-calendar/wordpress-events-shortcodes-for-the-events-calendar-plugin-2-3-1-sql-injection-vulnerability?_s_id=cve - Third Party Advisory

08 Jan 2024, 21:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-01-08 21:15

Updated : 2024-02-28 20:54


NVD link : CVE-2023-52142

Mitre link : CVE-2023-52142

CVE.ORG link : CVE-2023-52142


JSON object : View

Products Affected

coolplugins

  • events_shortcodes_for_the_events_calendar
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')