CVE-2024-5975
The CVE-2024-5975 entry concerns the CZ Loan Management WordPress plugin (versions ≤ 1.1). It describes an unauthenticated SQL injection caused by improper sanitization/escaping of a parameter used in a SQL statement via an AJAX action. Impact notes indicate unauthenticated attackers can perform ...