WordPress · Article Analytics Wordpress Plugin · CVE-2023-5640
**Name of the Vulnerable Software and Affected Versions**
Article Analytics WordPress plugin (affected versions not specified)
**Description**
The issue arises from the plugin's failure to properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action. This AJAX action is available to unauthenticated users, leading to a SQL injection issue.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.