A vulnerability was found in UsersWP Plugin up to 1.2.10 on WordPress. It has been classified as critical. This affects the function
uwp_sort_by
. The manipulation leads to sql injection.
This vulnerability is uniquely identified as CVE-2024-6265. It is possible to initiate the attack remotely. There is no exploit available.