CVE-2023-0234
published 2023-02-06CVE-2023-0234: The SiteGround Security WordPress plugin before 1.3.1 does not properly sanitize user input before using it in an SQL query, leading to an authenticated SQL…
PriorityP263high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
17.99%
96.8th percentile
The SiteGround Security WordPress plugin before 1.3.1 does not properly sanitize user input before using it in an SQL query, leading to an authenticated SQL injection issue.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| siteground | siteground_security | < 1.3.1 | 1.3.1 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://github.com/namah-age/CVEs/blob/master/1.mdhttps://wpscan.com/vulnerability/acf3e369-1290-4b3f-83bf-2209b9dd06e1https://www.siteground.com/viewtos/responsible_disclosure_policy?scid=4&lang=enhttps://github.com/namah-age/CVEs/blob/master/1.mdhttps://wpscan.com/vulnerability/acf3e369-1290-4b3f-83bf-2209b9dd06e1https://www.siteground.com/viewtos/responsible_disclosure_policy?scid=4&lang=en
2023-02-06
Published