CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Siteground: >> Siteground Security Security Vulnerabilities

CVE-2023-0234

The SiteGround Security WordPress plugin before 1.3.1 does not properly sanitize user input before using it in an SQL query, leading to an authenticated SQL injection issue.

CVSS Score

8.8

EPSS Score

0.125

Published

2023-02-06

CVE-2022-0993

The SiteGround Security plugin for WordPress is vulnerable to authentication bypass that allows unauthenticated users to log in as administrative users due to missing identity verification on the 2FA back-up code implementation that logs users in upon success. This affects versions up to, and including, 1.2.5.

CVSS Score

8.1

EPSS Score

0.033

Published

2022-04-19

Page 1

Vulnerabilities

Vulnerable Software

Siteground: >> Siteground Security Security Vulnerabilities

Products

Pricing

Contact Us