CVE-2023-6967 — SQL Injection in Pods Custom Content Types AND Fields

CWE-89 — SQL Injection3 documents3 sources

Severity

8.8HIGHNVD

EPSS

0.4%

top 36.58%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Sc0ttkclark Pods Custom Content Types AND Fields Podsfoundation Pods

Timeline

PublishedApr 9

Description

The Pods – Custom Content Types and Fields plugin for WordPress is vulnerable to SQL Injection via shortcode in all versions up to, and including, 3.0.10 (with the exception of 2.7.31.2, 2.8.23.2, 2.9.19.2) due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with contributor level access or higher, to append additional SQL queries into already existing queries that can be use…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages2 packages

▶CVEListV5sc0ttkclark/pods_custom_content_types_and_fields2.8 — 2.8.23.2+2

▶NVDpodsfoundation/pods2.8 — 2.8.23.2+3

🔴Vulnerability Details

CVEList

Pods - Custom Content Types and Fields - Authenticated (Contributor+) SQL Injection via Shortcode↗2024-04-09

▶

GHSA

GHSA-33g4-2m49-x49h: The Pods – Custom Content Types and Fields plugin for WordPress is vulnerable to SQL Injection via shortcode in all versions up to, and including, 3↗2024-04-09

▶