CVE-2024-13495 | GamiPress Plugin up to 7.2.1 on WordPress Shortcode gamipress_ajax_get_logs code injection

Inserito da Angelo Barbosa | Gen 22, 2025 | CVE

A vulnerability was found in GamiPress Plugin up to 7.2.1 on WordPress. It has been declared as critical. This vulnerability affects the function gamipress_ajax_get_logs of the component Shortcode Handler. The manipulation leads to code injection.

This vulnerability was named CVE-2024-13495. The attack can be initiated remotely. There is no exploit available.

CVE-2024-13495 | GamiPress Plugin up to 7.2.1 on WordPress Shortcode gamipress_ajax_get_logs code injection

Post correlati

CVE-2024-50382 | randombit Botan up to 3.5.x ghash.cpp control flow

CVE-2024-0638 | Checkmk up to 2.0.0p39/2.1.0p40/2.2.0p23/2.3.0b3 Agent Plugin least privilege violation

CVE-2023-50269 | Squid Web Proxy up to 2.7.STABLE9/5.9/6.5 HTTP Request Parser X-Forwarded-For recursion

CVE-2024-0525 | CXBSoft Url-shorting up to 1.3.1 HTTP POST Request /pages/long_s_short.php longurl sql injection