WordPress Plugin Vulnerabilities

WooCommerce PDF Invoice Builder < 1.2.90 - Subscriber+ SQLi

Description

The plugin does not properly sanitise and escape the pageId parameter before using it in a SQL statement, leading to a SQL injection exploitable by any authenticated users, such as subscribers

Affects Plugins

Plugin icon
woo-pdf-invoice-builder
Fixed in 1.2.90

References

CVE
CVE-2023-3677

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89
CVSS
8.8 (high)

Miscellaneous

Original Researcher
Marco Wotschka
Verified
No
WPVDB ID
3ca162a0-8f83-4289-950d-1a995c13b49a

Timeline

Publicly Published
2023-08-11 (about 2 years ago)
Added
2023-09-07 (about 2 years ago)
Last Updated
2023-09-07 (about 2 years ago)

Other

Published
Title
Published
2026-04-16
Title
Tutor LMS < 3.9.9 - Authenticated (Admin+) SQL Injection via 'date' Parameter
Published
2018-05-27
Title
Membermouse < 2.2.9 - Blind SQL Injection
Published
2024-03-26
Title
Contact Form to Any API < 1.1.9 - Authenticated (Subscriber+) SQL Injection
Published
2024-07-04
Title
Youzify < 1.2.6 - Authenticated (Contributor+) SQL Injection
Published
2014-08-01
Title
wp-forum - SQL Injection