WordPress Plugin Vulnerabilities

Seriously Simple Stats < 1.5.1 - Podcast Manager+ SQLi

Description

The plugin does not properly sanitise and escape the order_by parameter before using it in a SQL statement, leading to a SQL injection exploitable by podcast manager roles and above

Affects Plugins

Plugin icon
seriously-simple-stats
Fixed in 1.5.1

References

CVE
CVE-2023-45001

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89
CVSS
7.7 (high)

Miscellaneous

Original Researcher
Rafie Muhammad
Verified
No
WPVDB ID
379c543f-e423-436c-b0cc-483d84e4b636

Timeline

Publicly Published
2023-10-03 (about 2 years ago)
Added
2023-11-15 (about 2 years ago)
Last Updated
2023-11-15 (about 2 years ago)

Other

Published
Title
Published
2025-01-08
Title
WP Travel < 10.0.1 - Subscriber+ SQL Injection
Published
2021-01-03
Title
Contact Form Submissions < 1.7.1 - Authenticated SQL Injection
Published
2021-07-23
Title
Embed Youtube Video <= 1.0 - Authenticated SQL Injection
Published
2015-07-07
Title
Contact Form Builder <= 1.0.24 - Authenticated Blind SQL Injection
Published
2026-02-16
Title
Collapsing Categories < 3.0.12 - Authenticated (Contributor+) SQL Injection