WordPress Plugin Vulnerabilities

SupportCandy < 3.1.5 - Unauthenticated SQLi

Description

The plugin does not validate and escape user input before using it in an SQL statement, which could allow unauthenticated attackers to perform SQL injection attacks

Proof of Concept

Affects Plugins

Plugin icon
supportcandy
Fixed in 3.1.5

References

CVE
CVE-2023-1730

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89
CVSS
8.6 (high)

Miscellaneous

Original Researcher
dc11
Submitter
dc11
Verified
Yes
WPVDB ID
44b51a56-ff05-4d50-9327-fc9bab74d4b7

Timeline

Publicly Published
2023-04-10 (about 2 years ago)
Added
2023-04-10 (about 2 years ago)
Last Updated
2023-04-10 (about 2 years ago)

Other

Published
Title
Published
2024-02-27
Title
WP eCommerce <= 3.15.1 - Unauthenticated SQL Injection
Published
2025-08-05
Title
FileBird – WordPress Media Library Folders & File Manager < 6.4.9 - Authenticated (Author+) SQL Injection
Published
2025-01-17
Title
WordPress Local SEO <= 2.3 - Unauthenticated SQL Injection
Published
2024-12-24
Title
Tourfic – Ultimate Hotel Booking, Travel Booking & Apartment Booking WordPress Plugin | WooCommerce Booking < 2.15.4 - Authenticated (Subscriber+) SQL Injection
Published
2024-12-12
Title
Responsive Filterable Portfolio <=1.0.8 - Authenticated (Admin+) SQL Injection