CVE-2024-11730 | iqonicdesign KiviCare Plugin up to 3.6.4 on WordPress static_data_list sort[] sql injection

Posted by Angelo Barbosa | Dec 6, 2024 | CVE

A vulnerability has been found in iqonicdesign KiviCare Plugin up to 3.6.4 on WordPress and classified as critical. This vulnerability affects the function static_data_list. The manipulation of the argument sort[] leads to sql injection.

This vulnerability was named CVE-2024-11730. The attack can be initiated remotely. There is no exploit available.

CVE-2024-11730 | iqonicdesign KiviCare Plugin up to 3.6.4 on WordPress static_data_list sort[] sql injection

Related Posts

CVE-2024-28579 | FreeImage 3.19.0 r1909 HDR Image FreeImage_Unload buffer overflow

CVE-2024-45760 | Dell OpenManage Server Administrator up to 11.0.1.0 HTTP GET authorization (dsa-2024-481)

CVE-2024-29756 | Google Android q6afe.c afe_callback out-of-bounds write

CVE-2024-2844 | Easy Appointments Plugin up to 3.11.18 on WordPress improper authorization