Vulnerabilities > Tracktheclick

DATE	CVE	VULNERABILITY TITLE	RISK
2024-01-17	CVE-2023-5041	SQL Injection vulnerability in Tracktheclick Track the Click The Track The Click WordPress plugin before 0.3.12 does not properly sanitize query parameters to the stats REST endpoint before using them in a database query, allowing a logged in user with an author role or higher to perform time based blind SQLi attacks on the database. network low complexity tracktheclick CWE-89	8.8

Vulnerabilities > Tracktheclick {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Tracktheclick"}]}