CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-0900

The Pricing Table Builder WordPress plugin through 1.1.6 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high-privilege users such as admins.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.082

EPSS Ranking 91.7%

CVSS Severity

CVSS v3 Score 7.2

References

https://wpscan.com/vulnerability/f601e637-a486-4f3a-9077-4f294ace7ea1
https://wpscan.com/vulnerability/f601e637-a486-4f3a-9077-4f294ace7ea1

Products affected by CVE-2023-0900

Wpdevart » Pricing Table Builder » Version: 1.1.5

cpe:2.3:a:wpdevart:pricing_table_builder:1.1.5
Wpdevart » Pricing Table Builder » Version: 1.1.6

cpe:2.3:a:wpdevart:pricing_table_builder:1.1.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-0900

Products

Pricing

Contact Us