Unrated severityNVD Advisory· Published May 15, 2025· Updated May 20, 2025
Website File Changes < 2.1.0 - Admin+ Authenticated SQL Injection
CVE-2024-10009
Description
The Melapress File Monitor WordPress plugin before 2.1.0 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3<2.1.0+ 1 more
- (no CPE)range: <2.1.0
- (no CPE)range: 0
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/c2b1f9f4-d5f3-4975-afd1-50eaf193e2ab/mitreexploitvdb-entrytechnical-description
News mentions
0No linked articles in our index yet.