ByteOS Network

NVD Vulnerability Details :

CVE-2023-0234

Modified

Source-contact@wpscan.com

Published At-06 Feb, 2023 | 20:15

Updated At-25 Mar, 2025 | 19:15

The SiteGround Security WordPress plugin before 1.3.1 does not properly sanitize user input before using it in an SQL query, leading to an authenticated SQL injection issue.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	8.8	HIGH	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Secondary	3.1	8.8	HIGH	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Type: Primary

Version: 3.1

Base score: 8.8

Base severity: HIGH

Vector:

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Type: Secondary

Version: 3.1

Base score: 8.8

Base severity: HIGH

Vector:

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CPE Matches

siteground>>siteground_security>>Versions before 1.3.1(exclusive)

cpe:2.3:a:siteground:siteground_security:*:*:*:*:*:wordpress:*:*

References

Hyperlink	Source	Resource
https://github.com/namah-age/CVEs/blob/master/1.md	contact@wpscan.com	Third Party Advisory
https://wpscan.com/vulnerability/acf3e369-1290-4b3f-83bf-2209b9dd06e1	contact@wpscan.com	Exploit Third Party Advisory
https://www.siteground.com/viewtos/responsible_disclosure_policy?scid=4&lang=en	contact@wpscan.com	Issue Tracking
https://github.com/namah-age/CVEs/blob/master/1.md	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory
https://wpscan.com/vulnerability/acf3e369-1290-4b3f-83bf-2209b9dd06e1	af854a3a-2127-422b-91ae-364da2661108	Exploit Third Party Advisory
https://www.siteground.com/viewtos/responsible_disclosure_policy?scid=4&lang=en	af854a3a-2127-422b-91ae-364da2661108	Issue Tracking