First published: Mon Feb 13 2023(Updated: )
The WP Airbnb Review Slider WordPress plugin before 3.3 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as subscriber.
Credit: contact@wpscan.com
Affected Software | Affected Version | How to fix |
---|---|---|
Ljapps Wp Airbnb Review Slider | <3.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2023-0262.
The severity of CVE-2023-0262 is high with a score of 8.8.
CVE-2023-0262 affects the WP Airbnb Review Slider plugin by allowing SQL injection that can be exploited by users with a role as low as subscriber.
To fix the vulnerability in WP Airbnb Review Slider plugin, update to version 3.3 or newer.
You can find more information about CVE-2023-0262 at the following link: [https://wpscan.com/vulnerability/5d8c28ac-a46c-45d3-acc9-2cd2e6356ba2]