2 matches found
CVE-2024-12195
creationtimestamp| type| source ---|---|--- 2025-01-04 11:27:43+00:00| seen| https://infosec.exchange/users/cve/statuses/113769844738584802 2025-01-04 12:15:37+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lew3h6qn5v22 2025-01-04 12:42:26+00:00| seen|...
CVE-2024-12195 WP Project Manager – Task, team, and project management plugin featuring kanban board and gantt charts <= 2.6.16 - Authenticated (Subscriber+) SQL Injection
The WP Project Manager – Task, team, and project management plugin featuring kanban board and gantt charts plugin for WordPress is vulnerable to SQL Injection via the 'projectid' parameter of the /wp-json/pm/v2/projects/2/task-lists REST API endpoint in all versions up to, and including, 2.6.16 d...