WordPress Plugin WishList Member X SQL Injection - CVE-2024-37112 - Vulnerability Database

WordPress Plugin WishList Member X SQL Injection - CVE-2024-37112

Critical

Reference: CVE-2024-37112

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2024-37112

Title: WordPress Plugin WishList Member X SQL Injection

Overview:

WordPress Plugin WishList Member X is prone to an SQL injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application access or modify data or exploit latent vulnerabilities in the underlying database. WordPress Plugin WishList Member X version 3.25.1 is vulnerable prior versions may also be affected.