Unrated severityNVD Advisory· Published Jun 19, 2023· Updated Dec 12, 2024

QueryWall: Plug'n Play Firewall <= 1.1.1 - Admin+ SQLi

CVE-2023-2492

Description

The QueryWall: Plug'n Play Firewall WordPress plugin through 1.1.1 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

WordPress/QueryWall: Plug'n Play Firewalldescription
WordPress/QueryWallllm-create
Range: <=1.1.1

Patches

Vulnerability mechanics

References

wpscan.com/vulnerability/fa7c54c2-5653-4d3d-8163-f3d63272c050mitreexploitvdb-entrytechnical-description

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000