WordPress Plugin Vulnerabilities

Horizontal scrolling announcement <= 9.2 - Authenticated (subscriber+) Blind SQL Injection

Description

The plugin did not sanitise its sid shortcode parameter before using it in a SQL statement, allowing low privilege users (subscriber+) to perform Blind SQL Injection attack.

Affects Plugins

Plugin icon
horizontal-scrolling-announcement
No known fix

References

CVE
CVE-2023-4999

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89
CVSS
8.8 (high)

Miscellaneous

Original Researcher
Lana Codes
Verified
No
WPVDB ID
598fdde8-2d16-4531-9ec2-a9ff99695af5

Timeline

Publicly Published
2023-09-15 (about 2 years ago)
Added
2023-10-20 (about 2 years ago)
Last Updated
2023-10-20 (about 2 years ago)

Other

Published
Title
Published
2021-10-11
Title
Asgaros Forum < 1.15.13 - Unauthenticated SQL Injection
Published
2023-01-11
Title
Hide My WP < 6.2.9 - Unauthenticated SQLi
Published
2022-08-01
Title
Better Search and Replace < 1.4.1 - Admin+ SQLi
Published
2025-12-12
Title
Filter & Grids < 3.2.1 - Unauthenticated SQL Injection
Published
2025-07-14
Title
CoSchool LMS <= 1.4.3 - Authenticated (Subscriber+) SQL Injection