CVE-2023-0262: SQL Injection
First published: Mon Feb 13 2023(Updated: )
The WP Airbnb Review Slider WordPress plugin before 3.3 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as subscriber.
Credit: contact@wpscan.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Ljapps Wp Airbnb Review Slider | <3.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for the WP Airbnb Review Slider WordPress plugin?
The vulnerability ID is CVE-2023-0262.
What is the severity of CVE-2023-0262?
The severity of CVE-2023-0262 is high with a score of 8.8.
How does CVE-2023-0262 affect the WP Airbnb Review Slider plugin?
CVE-2023-0262 affects the WP Airbnb Review Slider plugin by allowing SQL injection that can be exploited by users with a role as low as subscriber.
How can I fix the vulnerability in WP Airbnb Review Slider plugin?
To fix the vulnerability in WP Airbnb Review Slider plugin, update to version 3.3 or newer.
Where can I find more information about CVE-2023-0262?
You can find more information about CVE-2023-0262 at the following link: [https://wpscan.com/vulnerability/5d8c28ac-a46c-45d3-acc9-2cd2e6356ba2]
- collector/nvd-index
- vendor/ljapps
- canonical/ljapps wp airbnb review slider