CVE-2023-52135
HIGH WAF: High
CVSS 7.2
Published: 2023-12-29
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WS Form WS Form LITE – Drag & Drop Contact Form Builder for WordPress.This issue affects WS Form LITE – Drag & Drop Contact Form Builder for WordPress: from n/a through 1.9.170.
WAF Coverage Analysis
SQL Injection
High WAF Coverage
OWASP: A03:2021 Injection
942xxx - SQL Injection
Affected Software
| Vendor | Product | Version |
|---|---|---|
| westguardsolutions | ws_form | up to 1.9.171 |
References
- patchstack.com (Third Party Advisory)