CVE-2023-0224
GiveWP < 2.24.1 - Unauthenticated SQLiThe GiveWP WordPress plugin before 2.24.1 does not properly escape user input before it reaches SQL queries, which could let unauthenticated attackers perform SQL Injection attacks
We have discovered 2,488 live websites that are affected by CVE-2023-0224.
Contact us to get more info
Affected Software
| |
---|
Product | GiveWP |
Category | Wordpress Plugins |
Vulnerable Versions | |
Total Vulnerable Versions | 178 |
Vulnerable Domains | 2,488 live websites (17.90% of GiveWP install base) |
Common Weakness Enumeration
CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Distribution by Website Rank
The diagram provides a graphic representation of the correlation between the occurrence of CVE-2023-0224 and the relative popularity of websites