High severity7.2NVD Advisory· Published Nov 6, 2023· Updated Jun 17, 2026
CVE-2023-5082
CVE-2023-5082
Description
The History Log by click5 WordPress plugin before 1.0.13 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by admin users when using the Smash Balloon Social Photo Feed plugin alongside it.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<1.0.13+ 1 more
- (no CPE)range: <1.0.13
- (no CPE)range: 0
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/13a196ba-49c7-4575-9a49-3ef9eb2348f3nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.