Vulnerabilities > Alphabpo > Easy Newsletter Signups

DATE CVE VULNERABILITY TITLE RISK
2023-12-04 CVE-2023-5108 SQL Injection vulnerability in Alphabpo Easy Newsletter Signups 1.0.4
The Easy Newsletter Signups WordPress plugin through 1.0.4 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin
network
low complexity
alphabpo CWE-89
7.2