CVE-2024-11036 | rubengc GamiPress Plugin up to 7.1.5 on WordPress Shortcode gamipress_get_user_earnings code injection

Inserito da Angelo Barbosa | Nov 19, 2024 | CVE

A vulnerability, which was classified as critical, has been found in rubengc GamiPress Plugin up to 7.1.5 on WordPress. Affected by this issue is the function gamipress_get_user_earnings of the component Shortcode Handler. The manipulation leads to code injection.

This vulnerability is handled as CVE-2024-11036. The attack may be launched remotely. There is no exploit available.

CVE-2024-11036 | rubengc GamiPress Plugin up to 7.1.5 on WordPress Shortcode gamipress_get_user_earnings code injection

Post correlati

CVE-2024-1650 | Categorify Plugin up to 1.0.7.4 on WordPress categorifyAjaxRenameCategory authorization

CVE-2024-1797 | WP ULike Plugin up to 4.6.9 on WordPress Shortcode sql injection

CVE-2022-30265 | Emerson PAC Machine Edition code download (icsa-24-158-01)

CVE-2024-30273 | Adobe Illustrator up to 27.9.2/28.3 stack-based overflow (apsb24-25)