CVE-2024-12473 | opacewebdesign AI Scribe Plugin up to 2.3 on WordPress Shortcode article_builder_generate_data template_id sql injection

Posted by Angelo Barbosa | Jan 10, 2025 | CVE

A vulnerability has been found in opacewebdesign AI Scribe Plugin up to 2.3 on WordPress and classified as critical. This vulnerability affects the function article_builder_generate_data of the component Shortcode Handler. The manipulation of the argument template_id leads to sql injection.

This vulnerability was named CVE-2024-12473. The attack can be initiated remotely. There is no exploit available.

CVE-2024-12473 | opacewebdesign AI Scribe Plugin up to 2.3 on WordPress Shortcode article_builder_generate_data template_id sql injection

Related Posts

CVE-2023-51634 | Netgear RAX30 certificate validation

CVE-2024-39720 | Ollama up to 0.1.45 HTTP Request memory corruption

CVE-2024-0500 | SourceCodester House Rental Management System 1.0 Manage Tenant Details Name cross site scripting

CVE-2023-6303 | CSZCMS 1.3.0 Site Settings Page /admin/settings/ Additional Meta Tag cross site scripting