Description

WeBid <=1.2.2 is vulnerable to code injection via admin/categoriestrans.php.

Remediation

References

CVE-2023-47397

Related Vulnerabilities

WordPress Plugin Visitor Traffic Real Time Statistics Cross-Site Request Forgery (1.12)

WordPress Plugin Site Reviews CSV Injection (6.2.0)

Liferay DXP Session Fixation Vulnerability (CVE-2023-47798)

WordPress Plugin LittleBot ACH for Stripe + Plaid Unspecified Vulnerability (1.2.6)

Drupal Core 9.1.x Cross-Site Request Forgery (9.1.0 - 9.1.12)

Severity

Critical

Classification

CVE-2023-47397 CWE-94 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities