High severity7.7NVD Advisory· Published Dec 2, 2024· Updated Jun 17, 2026
CVE-2024-12015
CVE-2024-12015
Description
The 'Project Manager' WordPress Plugin is affected by an authenticated SQL injection vulnerability in the 'orderby' parameter in the '/pm/v2/activites' route.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.