CVE-2023-52132
CVSS 3.1 Score 7.2 of 10 (high)
Details
Published Dec 31, 2023
Updated: Jan 5, 2024
CWE ID 89
Summary
CVE-2023-52132 is an SQL injection vulnerability affecting the WP Adminify plugin for the Jewel Theme. The flaw arises from improper neutralization of special elements in SQL commands. This issue puts versions of WP Adminify from n/a through 3.1.6 at risk. Attackers could exploit this vulnerability to gain unauthorized access to sensitive data or even take control of the affected website. It is essential for users to update WP Adminify to a secure version as soon as possible to mitigate this threat.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share