3 matches found
CVE-2024-10009
creationtimestamp| type| source ---|---|--- 2025-05-20 16:40:45+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/17001...
CVE-2024-10009
The CVE-2024-10009 entry relates to the Melapress File Monitor WordPress plugin prior to version 2.1.0. The root cause is insufficient sanitization and escaping of a parameter used in an SQL statement, enabling an SQL injection attack by admins. Reported details across multiple sources confirm th...
CVE-2024-10009 Website File Changes < 2.1.0 - Admin+ Authenticated SQL Injection
The Melapress File Monitor WordPress plugin before 2.1.0 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks...