High severity7.2NVD Advisory· Published May 15, 2025· Updated Jun 17, 2026
CVE-2024-12735
CVE-2024-12735
Description
The Advance Post Prefix WordPress plugin through 1.1.1 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins and above to perform SQL injection attacks
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3(expand)+ 1 more
- (no CPE)
- (no CPE)
- Range: <=1.1.1
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/1b355399-e92b-46aa-ada1-95e99fc03976/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.