High severity7.2NVD Advisory· Published Dec 4, 2023· Updated Jun 17, 2026
CVE-2023-5108
CVE-2023-5108
Description
The Easy Newsletter Signups WordPress plugin through 1.0.4 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: <=1.0.4
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/1b277929-e88b-4ab6-9190-526e75f5ce7anvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.