3 matches found
WordPress Website File Changes plugin < 2.1.1 - Authenticated SQL Injection vulnerability
Authenticated SQL Injection vulnerability discovered by y4ng0615 in WordPress Plugin Melapress File Monitor versions 2.1.1...
CVE-2024-9879
The Melapress File Monitor WordPress plugin before 2.1.1 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks...
CVE-2024-9879
The WordPress plugin Melapress File Monitor (vulnerable: prior to 2.1.1) exposes an SQL injection vulnerability caused by an unsanitized parameter used in a SQL statement. Affected product matches: Melapress File Monitor WordPress plugin before 2.1.1. Underlying cause is lack of input sanitizatio...