Vulnerability Details CVE-2023-0600
The WP Visitor Statistics (Real Time Traffic) WordPress plugin before 6.9 does not escape user input which is concatenated to an SQL query, allowing unauthenticated visitors to conduct SQL Injection attacks.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.774
EPSS Ranking 99.0%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2023-0600
-
cpe:2.3:a:codepress:visitor_statistics:-
-
cpe:2.3:a:codepress:visitor_statistics:1.0
-
cpe:2.3:a:codepress:visitor_statistics:1.1
-
cpe:2.3:a:codepress:visitor_statistics:1.2
-
cpe:2.3:a:codepress:visitor_statistics:1.3
-
cpe:2.3:a:codepress:visitor_statistics:1.4
-
cpe:2.3:a:codepress:visitor_statistics:1.5
-
cpe:2.3:a:codepress:visitor_statistics:1.6
-
cpe:2.3:a:codepress:visitor_statistics:1.7
-
cpe:2.3:a:codepress:visitor_statistics:1.8
-
cpe:2.3:a:codepress:visitor_statistics:1.9
-
cpe:2.3:a:codepress:visitor_statistics:2.1
-
cpe:2.3:a:codepress:visitor_statistics:2.2
-
cpe:2.3:a:codepress:visitor_statistics:2.3
-
cpe:2.3:a:codepress:visitor_statistics:2.4
-
cpe:2.3:a:codepress:visitor_statistics:2.5
-
cpe:2.3:a:codepress:visitor_statistics:2.6
-
cpe:2.3:a:codepress:visitor_statistics:2.7
-
cpe:2.3:a:codepress:visitor_statistics:2.8
-
cpe:2.3:a:codepress:visitor_statistics:2.9
-
cpe:2.3:a:codepress:visitor_statistics:3.1
-
cpe:2.3:a:codepress:visitor_statistics:3.10
-
cpe:2.3:a:codepress:visitor_statistics:3.11
-
cpe:2.3:a:codepress:visitor_statistics:3.12
-
cpe:2.3:a:codepress:visitor_statistics:3.13
-
cpe:2.3:a:codepress:visitor_statistics:3.14
-
cpe:2.3:a:codepress:visitor_statistics:3.15
-
cpe:2.3:a:codepress:visitor_statistics:3.16
-
cpe:2.3:a:codepress:visitor_statistics:3.17
-
cpe:2.3:a:codepress:visitor_statistics:3.18
-
cpe:2.3:a:codepress:visitor_statistics:3.2
-
cpe:2.3:a:codepress:visitor_statistics:3.3
-
cpe:2.3:a:codepress:visitor_statistics:3.4
-
cpe:2.3:a:codepress:visitor_statistics:3.5
-
cpe:2.3:a:codepress:visitor_statistics:3.6
-
cpe:2.3:a:codepress:visitor_statistics:3.7
-
cpe:2.3:a:codepress:visitor_statistics:3.8
-
cpe:2.3:a:codepress:visitor_statistics:3.9
-
cpe:2.3:a:codepress:visitor_statistics:4.1
-
cpe:2.3:a:codepress:visitor_statistics:4.2
-
cpe:2.3:a:codepress:visitor_statistics:4.3
-
cpe:2.3:a:codepress:visitor_statistics:4.4
-
cpe:2.3:a:codepress:visitor_statistics:4.5
-
cpe:2.3:a:codepress:visitor_statistics:4.6
-
cpe:2.3:a:codepress:visitor_statistics:4.7
-
cpe:2.3:a:codepress:visitor_statistics:4.8
-
cpe:2.3:a:codepress:visitor_statistics:4.9
-
cpe:2.3:a:codepress:visitor_statistics:5.0
-
cpe:2.3:a:codepress:visitor_statistics:5.1
-
cpe:2.3:a:codepress:visitor_statistics:5.2
-
cpe:2.3:a:codepress:visitor_statistics:5.3
-
cpe:2.3:a:codepress:visitor_statistics:5.4
-
cpe:2.3:a:codepress:visitor_statistics:5.5
-
cpe:2.3:a:codepress:visitor_statistics:5.6
-
cpe:2.3:a:codepress:visitor_statistics:5.7
-
cpe:2.3:a:codepress:visitor_statistics:5.8
-
cpe:2.3:a:codepress:visitor_statistics:5.9
-
cpe:2.3:a:codepress:visitor_statistics:6.1
-
cpe:2.3:a:codepress:visitor_statistics:6.2
-
cpe:2.3:a:codepress:visitor_statistics:6.3
-
cpe:2.3:a:codepress:visitor_statistics:6.4
-
cpe:2.3:a:codepress:visitor_statistics:6.5
-
cpe:2.3:a:codepress:visitor_statistics:6.6
-
cpe:2.3:a:codepress:visitor_statistics:6.7
-
cpe:2.3:a:codepress:visitor_statistics:6.8
-
cpe:2.3:a:codepress:visitor_statistics:6.8.1