CVE-2023-52133

HIGH

Most And Least Read Posts Widget < 2.5.16 - SQL Injection

Title source: llm
STIX 2.1

Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WhileTrue Most And Least Read Posts Widget.This issue affects Most And Least Read Posts Widget: from n/a through 2.5.16.

Scores

CVSS v3 8.5
EPSS 0.0054
EPSS Percentile 41.4%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L

Details

CWE
CWE-89
Status published
Products (2)
WhileTrue/Most And Least Read Posts Widget < 2.5.16
whiletrue/most_and_least_read_posts_widget < 2.5.16
Published Dec 31, 2023
Tracked Since Feb 18, 2026