CVE-2024-13846 | azzaroco Indeed Ultimate Learning Pro Plugin up to 3.9 on WordPress post_id sql injection

Inserito da Angelo Barbosa | Feb 21, 2025 | CVE

A vulnerability has been found in azzaroco Indeed Ultimate Learning Pro Plugin up to 3.9 on WordPress and classified as critical. This vulnerability affects unknown code. The manipulation of the argument post_id leads to sql injection.

This vulnerability was named CVE-2024-13846. The attack can be initiated remotely. There is no exploit available.

CVE-2024-13846 | azzaroco Indeed Ultimate Learning Pro Plugin up to 3.9 on WordPress post_id sql injection

Post correlati

CVE-2023-7035 | automad up to 1.10.9 Setting post.php sitename cross site scripting

CVE-2024-6889 | Secure Copy Content Protection and Content Locking Plugin Setting cross site scripting

CVE-2024-13299 | Drupal Megamenu Framework Privilege Escalation

CVE-2025-21344 | Microsoft SharePoint Server input validation