CVE-2023-38519

CVSS 3.1 Score 4.9 of 10 (medium)

Details

Published Dec 20, 2023
Updated: Dec 28, 2023
CWE ID 89

Summary

CVE-2023-38519 is a significant SQL Injection vulnerability affecting the MainWP Dashboard – WordPress Manager for Multiple Websites Maintenance, from version n/a to 4.4.3.3. This issue occurs due to improper neutralization of special elements used in an SQL command, making it possible for attackers to execute malicious queries and potentially gain unauthorized access to sensitive data. The vulnerability poses a serious threat to websites running the affected version of MainWP Dashboard and requires immediate patches to prevent potential attacks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share