The SupportCandy WordPress plugin before 3.1.7 does not properly sanitise and escape the agents[] parameter in the set_add_agent_leaves AJAX function before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: WPScan
Published: 2023-06-19T10:52:54.332Z
Updated: 2024-08-02T06:33:05.771Z
Reserved: 2023-05-19T07:59:37.679Z
Link: CVE-2023-2805
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-06-19T11:15:10.710
Modified: 2023-11-07T04:13:21.530
Link: CVE-2023-2805
Redhat
No data.