Vulnerabilities > Sandhillsdev > Easy Digital Downloads > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-20 | CVE-2023-23489 | SQL Injection vulnerability in Sandhillsdev Easy Digital Downloads The Easy Digital Downloads WordPress Plugin, versions 3.1.0.2 & 3.1.0.3, is affected by an unauthenticated SQL injection vulnerability in the 's' parameter of its 'edd_download_search' action. | 9.8 |