Unrated severityNVD Advisory· Published Sep 13, 2024· Updated Sep 13, 2024
AI Engine < 2.4.8 - Admin+ SQLi
CVE-2024-6723
Description
The AI Engine WordPress plugin before 2.4.8 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by admin users when viewing chatbot discussions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/fbd2152e-0aa1-4b56-a6a3-2e6ec78e08a5/mitreexploitvdb-entrytechnical-description
News mentions
0No linked articles in our index yet.