CVE-2023-0765

HIGH

Gallery by BestWebSoft < 4.7.0 - Authenticated Blind SQL Injection

Title source: llm
STIX 2.1

Description

The Gallery by BestWebSoft WordPress plugin before 4.7.0 does not properly escape values used in SQL queries, leading to an Blind SQL Injection vulnerability. The attacker must have at least the privileges of an Author, and the vendor's Slider plugin (https://wordpress.org/plugins/slider-bws/) must also be installed for this vulnerability to be exploitable.

References (1)

Core 1
Core References
Exploit, Third Party Advisory exploit vdb-entry technical-description
https://wpscan.com/vulnerability/2699cefa-1cae-4ef3-ad81-7f3db3fcce25

Scores

CVSS v3 8.8
EPSS 0.0087
EPSS Percentile 54.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact total

Details

CWE
CWE-89
Status published
Products (1)
bestwebsoft/gallery < 4.7.0
Published Apr 17, 2023
Tracked Since Feb 18, 2026