CVE-2023-28661

State: PUBLISHED · Published: 2023-03-22 · Updated: 2025-02-25 · Assigner: tenable

Description

The WP Popup Banners WordPress Plugin, version <= 1.2.5, is affected by an authenticated SQL injection vulnerability in the 'value' parameter in the get_popup_data action.

CWE

(none)

Affected

n/a / WP Popup Banners WordPress Plugin — v=<= 1.2.5 [affected]

CVSS

(none)

References

https://www.tenable.com/security/research/tra-2023-2

Source

cvelistV5-main/cves/2023/28xxx/CVE-2023-28661.json