CVE-2024-11729 | iqonicdesign KiviCare Plugin up to 3.6.4 on WordPress service_list[0][service_id] sql injection

Inserito da Angelo Barbosa | Dic 6, 2024 | CVE

A vulnerability, which was classified as critical, was found in iqonicdesign KiviCare Plugin up to 3.6.4 on WordPress. This affects the function service_list[0][service_id]. The manipulation leads to sql injection.

This vulnerability is uniquely identified as CVE-2024-11729. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-11729 | iqonicdesign KiviCare Plugin up to 3.6.4 on WordPress service_list[0][service_id] sql injection

Post correlati

CVE-2024-5993 | Cliengo Chatbot Plugin up to 3.0.1 on WordPress Session Token update_session authorization

CVE-2024-12463 | Arena.IM Plugin up to 0.3.0 on WordPress Shortcode arena_embed_amp cross site scripting

CVE-2024-45453 | Maintenance Redirect Plugin up to 2.0.1 on WordPress Maintenance Mode access control

CVE-2024-43191 | IBM Cloud Pak for Multicloud Management 2.3/2.3 FP8 YAML File deserialization