CVE-2023-29432

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Favethemes Houzez - Real Estate WordPress Theme.This issue affects Houzez - Real Estate WordPress Theme: from n/a before 2.8.3.
Configurations

Configuration 1 (hide)

cpe:2.3:a:favethemes:houzez:*:*:*:*:*:wordpress:*:*

History

21 Nov 2024, 07:57

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 9.8
v2 : unknown
v3 : 8.2
References () https://patchstack.com/database/vulnerability/houzez/wordpress-houzez-theme-2-8-3-unauth-sql-injection-sqli-vulnerability?_s_id=cve - Third Party Advisory () https://patchstack.com/database/vulnerability/houzez/wordpress-houzez-theme-2-8-3-unauth-sql-injection-sqli-vulnerability?_s_id=cve - Third Party Advisory

27 Dec 2023, 16:45

Type Values Removed Values Added
CPE cpe:2.3:a:favethemes:houzez:*:*:*:*:*:wordpress:*:*
Summary
  • (es) La neutralización incorrecta de elementos especiales utilizados en una vulnerabilidad de comando SQL ('Inyección SQL') en Favethemes Houzez - Real Estate WordPress Theme. Este problema afecta a Houzez - Real Estate WordPress Theme: desde n/a antes de 2.8.3.
First Time Favethemes houzez
Favethemes
References () https://patchstack.com/database/vulnerability/houzez/wordpress-houzez-theme-2-8-3-unauth-sql-injection-sqli-vulnerability?_s_id=cve - () https://patchstack.com/database/vulnerability/houzez/wordpress-houzez-theme-2-8-3-unauth-sql-injection-sqli-vulnerability?_s_id=cve - Third Party Advisory
CVSS v2 : unknown
v3 : 8.2
v2 : unknown
v3 : 9.8

20 Dec 2023, 18:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-12-20 18:15

Updated : 2024-11-21 07:57


NVD link : CVE-2023-29432

Mitre link : CVE-2023-29432

CVE.ORG link : CVE-2023-29432


JSON object : View

Products Affected

favethemes

  • houzez
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')