CVE-2023-51547

CVSS 3.1 Score 7.6 of 10 (high)

Details

Published Dec 31, 2023
Updated: Jan 5, 2024
CWE ID 89

Summary

CVE-2023-51547 is a vulnerability categorized as CWE-89 (Improper Neutralization of Special Elements used in an SQL Command, also known as SQL Injection). It affects the WordPress Helpdesk and Customer Support Ticket Plugin by WPManageNinja LLC, specifically versions from n/a through 1.7.6. The vulnerability is characterized by an improper neutralization of special elements in an SQL command, posing a high risk to the confidentiality of affected organizations. The base severity of this vulnerability is rated as HIGH with a base score of 7.6 according to audit@patchstack.com. To remediate the issue, it is recommended to update the plugin to a version that has addressed this vulnerability.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-51547 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options