[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"all-banners":3,"SkipToContent_34xgpJIRRkpiT6ls6jE4NHf7VpvQCQBEwi69exi4oT0":4,"FooterNav_JsYsxvLufb1W12aeknKZ89on0MD0bNDTiB5EYxyxmU":11,"FooterSocial_u16tCafBUeGMoDrdLfTINytP2JB5msc6iB3VDUutAoU":17,"vulnerability-19509":24},[],["Island",5],{"key":6,"params":7,"result":9},"SkipToContent_34xgpJIRRkpiT6ls6jE4NHf7VpvQCQBEwi69exi4oT0",{"props":8},"{}",{"head":10},{},["Island",12],{"key":13,"params":14,"result":15},"FooterNav_JsYsxvLufb1W12aeknKZ89on0MD0bNDTiB5EYxyxmU",{"props":8},{"head":16},{},["Island",18],{"key":19,"params":20,"result":22},"FooterSocial_u16tCafBUeGMoDrdLfTINytP2JB5msc6iB3VDUutAoU",{"props":21},"{\"text-color\":\"gray\"}",{"head":23},{},{"id":25,"detectable_with":26,"vuln_details":33,"vuln_id":50,"name":51,"published":52,"updated":34},19509,{"tool":27,"engine":30},{"id":28,"name":29},1,"Network Scanner",{"id":31,"name":32},3,"OpenVAS",{"id":25,"codename":34,"description":34,"severity":35,"risk_description":36,"public_description":37,"public_recommendation":38,"recommendation":34,"references":39,"cvssv3":42,"epss_score":43,"epss_percentile":44,"cve":45,"in_cisa_catalog":48,"date":49,"software_type":34,"vendor":34,"product":34,"ptt_exploit_capabilities":34},null,"high","The Following vulnerabilities exist: - CVE-2023-1471: Attackers are abke to append additional SQL queries into already existing queries due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. - CVE-2023-28661: The plugin does not properly sanitise and escape the value parameter before using it in a SQL statement via the get_popup_data AJAX action, leading to a SQL injection exploitable by any authenticated users, such as subscriber.","The WordPress plugin WP Popup Banners is prone to multiple SQL injection (SQLi) vulnerabilities.","No solution was made available by the vendor. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one.",[40,41],"https://www.wordfence.com/threat-intel/vulnerabilities/id/8281cb20-73d3-4ab5-910e-d353b2a5cbd8","https://wpscan.com/vulnerability/c3f6770e-de15-41c2-843b-d0ae55ad6418/",8.8,0.00998,0.76921,[46,47],"CVE-2023-1471","CVE-2023-28661",false,"2023-03-17T00:00:00Z","NETSCAN-OPENVAS-1.3.6.1.4.1.25623.1.0.126506","WordPress WP Popup Banners Plugin \u003C= 1.2.5 Multiple SQLi Vulnerabilities","2023-10-12T00:00:00Z"]