High severity7.2NVD Advisory· Published Jul 10, 2023· Updated Jun 17, 2026
CVE-2023-2493
CVE-2023-2493
Description
The All In One Redirection WordPress plugin before 2.2.0 does not properly sanitise and escape multiple parameters before using them in an SQL statement, leading to a SQL injection exploitable by high privilege users such as admin.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<2.2.0+ 1 more
- (no CPE)range: <2.2.0
- (no CPE)range: <2.2.0
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/a9a205a4-eef9-4f30-877a-4c562930650cnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.