CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-2527

The Integration for Contact Form 7 and Zoho CRM, Bigin WordPress plugin before 1.2.4 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 21.6%

CVSS Severity

CVSS v3 Score 4.8

References

https://wpscan.com/vulnerability/8051142a-4e55-4dc2-9cb1-1b724c67574f
https://wpscan.com/vulnerability/8051142a-4e55-4dc2-9cb1-1b724c67574f
https://wpscan.com/vulnerability/8051142a-4e55-4dc2-9cb1-1b724c67574f/

Products affected by CVE-2023-2527

None » None » Version:

_bigin:1.2.2
Crmperks » Integration For Contact Form 7 And Zoho Crm » Version: Any

cpe:2.3:a:crmperks:integration_for_contact_form_7_and_zoho_crm

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-2527

Products

Pricing

Contact Us