CVE-2023-5640 Information

Description

The Article Analytics WordPress plugin does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users leading to a SQL injection vulnerability.

Reference

https://wpscan.com/vulnerability/9a383ef5-0f1a-4894-8f78-845abcb5062d https://devl00p.github.io/posts/Injection-SQL-dans-le-plugin-Wordpress-Article-Analytics/