CVE-2023-46084: WordPress Icons Font Loader Plugin <= 1.1.2 is vulnerable to SQL Injection
First published: Mon Nov 06 2023(Updated: )
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in bPlugins LLC Icons Font Loader allows SQL Injection.This issue affects Icons Font Loader: from n/a through 1.1.2.
Credit: audit@patchstack.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| bPlugins Icons Font Loader | <=1.1.2 |
Remedy
Update to 1.1.2.1 or a higher version.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2023-46084.
What is the title of this vulnerability?
The title of this vulnerability is 'WordPress Icons Font Loader Plugin <= 1.1.2 is vulnerable to SQL Injection.'
What is the severity of CVE-2023-46084?
The severity of CVE-2023-46084 is high with a severity value of 8.8.
What software versions are affected by CVE-2023-46084?
Icons Font Loader version n/a through 1.1.2 is affected by CVE-2023-46084.
How can I fix the vulnerability CVE-2023-46084?
To fix the vulnerability CVE-2023-46084, it is recommended to update Icons Font Loader plugin to version 1.1.3 or higher.
- agent/type
- agent/first-publish-date
- agent/remedy
- agent/weakness
- agent/severity
- agent/author
- agent/references
- agent/title
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/softwarecombine
- agent/event
- agent/source
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/bplugins
- canonical/bplugins icons font loader
- version/bplugins icons font loader/1.1.2