CVE-2024-23507
WordPress InstaWP Connect plugin <= 0.1.0.9 - SQL Injection vulnerability
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in InstaWP InstaWP Connect instawp-connect.This issue affects InstaWP Connect: from n/a through <= 0.1.0.9.
| CWE | CWE-89 |
| Vendor | instawp |
| Product | instawp connect |
| Published | Jan 31, 2024 |
| Last Updated | Apr 1, 2026 |
Stay Ahead of the Next One
Get instant alerts for instawp instawp connect
Be the first to know when new unknown vulnerabilities affecting instawp instawp connect are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
InstaWP / InstaWP Connect
0 โค 0.1.0.9
References
patchstack.com: https://patchstack.com/database/Wordpress/Plugin/instawp-connect/vulnerability/wordpress-instawp-connect-plugin-0-1-0-9-sql-injection-vulnerability?_s_id=cve patchstack.com: https://patchstack.com/database/vulnerability/instawp-connect/wordpress-instawp-connect-plugin-0-1-0-9-sql-injection-vulnerability?_s_id=cve
Credits
Majed Refaea | Patchstack Bug Bounty Program