Unrated severityNVD Advisory· Published May 8, 2023· Updated Feb 4, 2025
NEX-Forms < 8.4 - Admin+ SQL Injection
CVE-2023-2114
Description
The NEX-Forms WordPress plugin before 8.4 does not properly escape the table parameter, which is populated with user input, before concatenating it to an SQL query.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <8.4
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/3d8ab3a5-1bf8-4216-91fa-e89541e5c43dmitreexploitvdb-entrytechnical-description
News mentions
0No linked articles in our index yet.