CVE-2024-12311 – Icegram Express WordPress Plugin SQL Injection Vulnerability

1月 6, 2025
7:17 am

CVE ID : CVE-2024-12311

Published : Jan. 6, 2025, 6:15 a.m. | 1 hour, 1 minute ago

Description : The Email Subscribers by Icegram Express WordPress plugin before 5.7.44 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-12311 – Icegram Express WordPress Plugin SQL Injection Vulnerability

Elvescore.io

Recent Posts

CVE-2024-11826 – Quill Forms Stored Cross-Site Scripting Vulnerability

CVE-2024-12033 – Jupiter X Core WordPress Unauthenticated Remote Code Execution (RCE)

CVE-2024-12316 – Jupiter X Core WordPress Unauthenticated Data Export Vulnerability

CVE-2024-12425 – LibreOffice Path Traversal Font Vulnerability

CVE-2024-12532 – Elementor Addons for WordPress Sensitive Information Exposure

CVE-2024-12711 – “WordPress RSVP and Event Management Plugin Authentication Bypass”

CVE-2024-12311 – Icegram Express WordPress Plugin SQL Injection Vulnerability

CVE-2024-12311 – Icegram Express WordPress Plugin SQL Injection Vulnerability