CVE-2024-1799
CVE-2024-1799 affects GamiPress (WordPress) up to version 6.8.6. Root cause: SQL Injection via the achievement_types parameter in the gamipress_earnings shortcode, caused by insufficient escaping and inadequate SQL query preparation. Impact per sources: authenticated users with contributor-level ...