CVE-2023-28660

State: PUBLISHED · Published: 2023-03-22 · Updated: 2025-02-25 · Assigner: tenable

Description

The Events Made Easy WordPress Plugin, version <= 2.3.14 is affected by an authenticated SQL injection vulnerability in the 'search_name' parameter in the eme_recurrences_list action.

CWE

(none)

Affected

n/a / Events Made Easy WordPress Plugin — v=<= 2.3.14 [affected]

CVSS

(none)

References

https://www.tenable.com/security/research/tra-2023-2

Source

cvelistV5-main/cves/2023/28xxx/CVE-2023-28660.json