Vulnerabilities > CVE-2023-0261 - Unspecified vulnerability in Ljapps WP Tripadvisor Review Slider

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

ljapps

NVD

Published: 2023-02-13

Updated: 2023-11-07

Summary

The WP TripAdvisor Review Slider WordPress plugin before 10.8 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as subscriber.

Vulnerable Configurations

Part	Description	Count
Application	Ljapps Ljapps WP Tripadvisor Review Slider -	1

References

https://wpscan.com/vulnerability/6a3b6752-8d72-4ab4-9d49-b722a947d2b0