← Back to CVE List

CVE-2023-2114

Published: 2023-05-08T14:15Z
Last Modified: 2025-02-04T20:15Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
The NEX-Forms WordPress plugin before 8.4 does not properly escape the `table` parameter, which is populated with user input, before concatenating it to an SQL query. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt