CVE-2024-8522 | LearnPress Plugin up to 4.2.7 on WordPress c_only_fields sql injection

Inserito da Angelo Barbosa | Set 12, 2024 | CVE

A vulnerability was found in LearnPress Plugin up to 4.2.7 on WordPress and classified as critical. Affected by this issue is some unknown functionality. The manipulation of the argument c_only_fields leads to sql injection.

This vulnerability is handled as CVE-2024-8522. The attack may be launched remotely. There is no exploit available.

CVE-2024-8522 | LearnPress Plugin up to 4.2.7 on WordPress c_only_fields sql injection

Post correlati

CVE-2023-51197 | OSRF ROS2 Foxy Fitzroy os command injection

CVE-2024-25507 | RuvarOA 6.01/12.01 /LHMail/AttachDown.aspx email_attach_id sql injection

CVE-2024-7941 | Hitachi Energy MicroSCADA SYS600 up to 10.5 HTTP Parameter redirect

CVE-2023-6799 | WP Reset Plugin up to 1.99 on WordPress information disclosure