all InfoSec news
Imperva Customers are Protected Against New SQL Injection Vulnerability in WordPress Plugin
Security Boulevard securityboulevard.com
A critical security flaw, identified as CVE-2024-1071, was discovered in the Ultimate Member plugin for WordPress, affecting over 200,000 active installations. This vulnerability has a high severity CVSS score of 9.8 and allows for SQL injection via the ‘sorting’ parameter due to insufficient input sanitization and preparation of SQL queries. Unauthenticated attackers could exploit this […]
The post Imperva Customers are Protected Against New SQL Injection Vulnerability in WordPress Plugin appeared first on Blog.
The post Imperva Customers are …
critical customers cve cvss cvss score flaw high imperva imperva threat research injection input parameter plugin preparation score security security flaw severity sql sql injection ultimate member vulnerability wordpress wordpress plugin