CVE-2024-13476 | enituretechnology LTL Freight Quotes Plugin up to 2.3.11 on WordPress AJAX Endpoint engtz_wd_save_dropship sql injection

Posted by Angelo Barbosa | Feb 20, 2025 | CVE

A vulnerability, which was classified as critical, has been found in enituretechnology LTL Freight Quotes Plugin up to 2.3.11 on WordPress. This issue affects the function engtz_wd_save_dropship of the component AJAX Endpoint. The manipulation leads to sql injection.

The identification of this vulnerability is CVE-2024-13476. The attack may be initiated remotely. There is no exploit available.

CVE-2024-13476 | enituretechnology LTL Freight Quotes Plugin up to 2.3.11 on WordPress AJAX Endpoint engtz_wd_save_dropship sql injection

Related Posts

CVE-2024-31472 | Aruba InstantOS/ArubaOS PAPI command injection (ARUBA-PSA-2024-006)

CVE-2024-7931 | SourceCodester Online Graduate Tracer System 1.0 view_csprofile.php id sql injection

CVE-2024-0739 | Hecheng Leadshop up to 1.4.20 /web/leadshop.php install deserialization

CVE-2024-1590 | Page Builder Plugin up to 1.8.2 on WordPress Button cross site scripting