CVE-2024-11036 | rubengc GamiPress Plugin up to 7.1.5 on WordPress Shortcode gamipress_get_user_earnings code injection

Posted by Angelo Barbosa | Nov 19, 2024 | CVE

A vulnerability, which was classified as critical, has been found in rubengc GamiPress Plugin up to 7.1.5 on WordPress. Affected by this issue is the function gamipress_get_user_earnings of the component Shortcode Handler. The manipulation leads to code injection.

This vulnerability is handled as CVE-2024-11036. The attack may be launched remotely. There is no exploit available.

CVE-2024-11036 | rubengc GamiPress Plugin up to 7.1.5 on WordPress Shortcode gamipress_get_user_earnings code injection

Related Posts

CVE-2023-42956 | Apple macOS Web Content memory corruption

CVE-2024-40787 | Apple iOS/iPadOS permission

CVE-2023-52461 | Linux Kernel up to 6.7.1 sched drm_sched_entity_init out-of-bounds (1470d173925d/2bbe6ab2be53)

CVE-2023-51784 | Apache InLong up to 1.9.0 code injection