Filtered by vendor Querywall Plug\'n Play Firewall Project Subscriptions
Filtered by product Querywall Plug\'n Play Firewall Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-2492 1 Querywall Plug\'n Play Firewall Project 1 Querywall Plug\'n Play Firewall 2024-08-02 7.2 High
The QueryWall: Plug'n Play Firewall WordPress plugin through 1.1.1 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin.