High severity8.8NVD Advisory· Published Aug 7, 2023· Updated Jun 17, 2026
CVE-2023-2843
CVE-2023-2843
Description
The MultiParcels Shipping For WooCommerce WordPress plugin before 1.14.15 does not properly sanitize and escape a parameter before using it in an SQL statement, which could allow any authenticated users, such as subscribers, to perform SQL Injection attacks.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: <1.14.15
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/8e713eaf-f332-47e2-a131-c14222201fdcnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.