| |
Vulnerability CVE-2023-2493
Published: 2023-07-10
| Description: |
The All In One Redirection WordPress plugin before 2.2.0 does not properly sanitise and escape multiple parameters before using them in an SQL statement, leading to a SQL injection exploitable by high privilege users such as admin. |
Type:
CWE-89 (Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'))
References: |
https://wpscan.com/vulnerability/a9a205a4-eef9-4f30-877a-4c562930650c
|
|
|
closedb();
?>
Copyright 2026, cxsecurity.com
|
|
|