CVE-2023-52142

Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Cool Plugins Events Shortcodes For The Events Calendar.This issue affects Events Shortcodes For The Events Calendar: from n/a through 2.3.1.

CVSS Version 3.1

nvd
CVE ID: CVE-2023-52142
Base Score: 8.8
Base Severity: HIGH
Vector String:CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 2.8

patchstack
CVE ID: CVE-2023-52142
Base Score: 7.6
Base Severity: HIGH
Vector String:CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:L
Impact Score: 4.7
Exploitability Score: 2.3

Refrence: NVD MITRE

Description​

Description