Authenticated SQL Injection in SiteGround Security WordPress Plugin

Authenticated SQL Injection in SiteGround Security WordPress Plugin

CVE-2023-0234 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

The SiteGround Security WordPress plugin before 1.3.1 does not properly sanitize user input before using it in an SQL query, leading to an authenticated SQL injection issue.

Learn more about our Wordpress Pen Testing.