2 matches found
CVE-2024-10341
CVE-2024-10341 relates to the WordPress plugin League of Legends Shortcodes. The vulnerability is an SQL Injection in the plugin’s shortcode for versions up to and including 1.0.1, caused by insufficient escaping of the user-supplied parameter and inadequate preparation of the SQL query. Exploita...
WordPress League of Legends Shortcodes Plugin <= 1.0.1 is vulnerable to SQL Injection
Software League of Legends Shortcodes Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2024-10341 Patch priority Low CVSS severity Low 8.5 Developer Claim ownership PSID e710f3b6d815 Credits István Márton Required privilege...