CVE-2023-2921 – This SQL injection vulnerability in the Short U... (How to Fix)

Q: What is the severity of CVE-2023-2921?

CVE-2023-2921 has a CVSS score of 8.8 (HIGH). This SQL injection vulnerability in the Short URL WordPress plugin allows authenticated users with subscriber-level permissions to execute arbitrary SQL commands. Attackers can potentially read, modify, or delete database content, including sensitive user data. All WordPress sites using vulnerable versions of this plugin are affected.

📋 TL;DR

This SQL injection vulnerability in the Short URL WordPress plugin allows authenticated users with subscriber-level permissions to execute arbitrary SQL commands. Attackers can potentially read, modify, or delete database content, including sensitive user data. All WordPress sites using vulnerable versions of this plugin are affected.

💻 Affected Systems

Products:

WordPress Short URL plugin

Versions: Versions through 1.6.8

Operating Systems: All

Default Config Vulnerable: ⚠️ Yes

Notes: Requires WordPress installation with the Short URL plugin enabled. Exploitable by users with subscriber role or higher.

📦 What is this software?

Short Url by Kaizencoders

View all CVEs affecting Short Url →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise leading to data theft, privilege escalation to administrator, and potential site takeover.

🟠

Likely Case

Unauthorized data access, user information leakage, and potential privilege escalation to modify site content.

🟢

If Mitigated

Limited impact if proper input validation and least privilege principles are enforced, though SQL injection risk remains.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ✅ No

Complexity: LOW

Exploitation requires authenticated access with at least subscriber privileges. SQL injection techniques are well-documented and easily weaponized.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 1.6.9 or later

Vendor Advisory: https://wpscan.com/vulnerability/0f85db4f-8493-4941-8f3c-e5258c581bdc/

Restart Required: No

Instructions:

1. Update Short URL plugin to version 1.6.9 or later via WordPress admin panel. 2. Navigate to Plugins > Installed Plugins. 3. Find Short URL plugin and click Update Now. 4. Verify update completes successfully.

🔧 Temporary Workarounds

Disable vulnerable plugin

all

Temporarily deactivate the Short URL plugin until patched

wp plugin deactivate short-url

Restrict user roles

all

Limit subscriber-level access to minimize attack surface

🧯 If You Can't Patch

Implement web application firewall (WAF) with SQL injection rules
Apply principle of least privilege and audit user accounts

🔍 How to Verify

Check if Vulnerable:

Check WordPress admin panel > Plugins > Installed Plugins for Short URL version 1.6.8 or earlier

Check Version:

wp plugin list --name=short-url --field=version

Verify Fix Applied:

Confirm Short URL plugin version is 1.6.9 or later in WordPress admin

📡 Detection & Monitoring

Log Indicators:

Unusual SQL queries in database logs
Multiple failed login attempts followed by SQL-like requests

Network Indicators:

HTTP POST requests with SQL injection patterns to wp-admin/admin-ajax.php

SIEM Query:

source="wordpress" AND (url="*admin-ajax.php*" AND (payload="*SELECT*" OR payload="*UNION*" OR payload="*OR 1=1*"))

📊 Metadata

CVE ID: CVE-2023-2921

CVSS v3 Score: 8.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-89

EPSS Score: 0.06% exploit probability (17.4th percentile)

Published: June 6, 2025

Last Updated: June 10, 2025

🔗 References

https://wpscan.com/vulnerability/0f85db4f-8493-4941-8f3c-e5258c581bdc/ Exploit,Third Party Advisory
https://wpscan.com/vulnerability/0f85db4f-8493-4941-8f3c-e5258c581bdc/ Exploit,Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-2921, you might also want to check these: