CVE-2023-1730
CVSS V2 None
CVSS V3 None
Description
The SupportCandy WordPress plugin before 3.1.5 does not validate and escape user input before using it in an SQL statement, which could allow unauthenticated attackers to perform SQL injection attacks
Overview
- CVE ID
- CVE-2023-1730
- Assigner
- contact@wpscan.com
- Vulnerability Status
- Received
- Published Version
- 2023-05-02T08:15:10
- Last Modified Date
- 2023-05-02T08:15:10
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://wpscan.com/vulnerability/44b51a56-ff05-4d50-9327-fc9bab74d4b7 |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-1730 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1730 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2023-05-02 09:01:26 | Added to TrackCVE | |||
| 2023-05-02 09:01:28 | Weakness Enumeration | new |