WordPress Soledad Theme <= 8.4.1 is vulnerable to SQL Injection
CVE-2023-49825
8.5HIGH
Key Information:
- Vendor
Wordpress
- Vendor
- CVE Published:
- 20 December 2023
What is CVE-2023-49825?
An SQL Injection vulnerability in the PenciDesign Soledad WordPress theme allows attackers to manipulate SQL queries through unsanitized input. This can lead to unauthorized data access or modification. Versions affected include all those prior to 8.4.1, leaving sites using this theme at risk if not updated. Website owners are strongly advised to implement the latest patches to mitigate potential threats.
Affected Version(s)
Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme <= 8.4.1