WordPress Melapress File Monitor plugin < 2.2.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin Melapress File Monitor versions 2.2.0...

CVE-2024-10009 Website File Changes < 2.1.0 - Admin+ Authenticated SQL Injection

The Melapress File Monitor WordPress plugin before 2.1.0 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks...