CVE-2024-13496 | GamiPress Plugin up to 7.2.1 on WordPress orderby sql injection

Posted by Angelo Barbosa | Jan 22, 2025 | CVE

A vulnerability was found in GamiPress Plugin up to 7.2.1 on WordPress. It has been rated as critical. This issue affects some unknown processing. The manipulation of the argument orderby leads to sql injection.

The identification of this vulnerability is CVE-2024-13496. The attack may be initiated remotely. There is no exploit available.

CVE-2024-13496 | GamiPress Plugin up to 7.2.1 on WordPress orderby sql injection

Related Posts

CVE-2025-0215 | UpdraftPlus Plugin up to 1.24.12 on WordPress cross site scripting

CVE-2023-49676 | CODESYS Development System prior 2.3.9.73 Project File use after free (VDE-2024-024)

CVE-2023-6289 | Swift Performance Lite Plugin up to 2.3.6.14 on WordPress Settings Export authorization

CVE-2024-1691 | Otter Blocks Pro Plugin up to 2.6.3 on WordPress SVG Upload cross site scripting