WP Visitor Statistics - SQLi (CVE-2023-0600)
36Exploiting IPs reported
The WP Visitor Statistics (Real Time Traffic) WordPress plugin before 6.9 does not escape user input which is concatenated to an SQL query, allowing unauthenticated visitors to conduct SQL Injection attacks.
CrowdSec analysis
CVE-2023-0600 is a critical vulnerability in the WP Visitor Statistics (Real Time Traffic) WordPress plugin that allows unauthenticated users to perform SQL Injection attacks due to improper handling of user input.
CrowdSec has been tracking this vulnerability and its exploits since 14th of May 2024.
Based on data from the CrowdSec network, nearly all observed exploitation of CVE-2023-0600 is fully opportunistic, with attackers indiscriminately scanning the entire internet. These attacks are automated and lack any form of target selection or reconnaissance. CrowdSec network telemetry also shows that exploitation of CVE-2023-0600 has significantly declined over the past week. Attack volumes are well below the long-term average, suggesting attackers are rapidly losing interest. The vulnerability appears to be falling out of active use across most threat landscapes.
Exploitation attempts typically involve tailored queries targeting endpoints associated with this plugin.
Exploitation
Get real-time information about exploitation attempts and actors involved.
Common Weakness Enumeration (CWE)
Protection
Find out relevant information to protect your stack against this CVE.
Blocklist
With our advanced worldwide network detection, CrowdSec can provide a list of IPs known for exploiting the vulnerability.
To increase your protection against this CVE, block exploitation attempts with this list of identified actors.