CVE-2023-23489

Description

The Easy Digital Downloads WordPress Plugin, version < 3.1.0.4, is affected by an unauthenticated SQL injection vulnerability in the 's' parameter of its 'edd_download_search' action.

Related CPE's

a sandhillsdev easy_digital_downloads *****wordpress **

References

https://www.tenable.com/security/research/tra-2023-2

ExploitThird Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics

Created by Yello

About Severity.io