CVE-2023-2592
FormCraft Premium < 3.9.7 - Admin+ SQLiThe FormCraft WordPress plugin before 3.9.7 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin.
We have discovered 7,675 live websites that are affected by CVE-2023-2592.
Contact us to get more info
Common Weakness Enumeration
CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Distribution by Website Rank
The diagram provides a graphic representation of the correlation between the occurrence of CVE-2023-2592 and the relative popularity of websites