Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Smartypants SP Project & Document Manager.This issue affects SP Project & Document Manager: from n/a through 4.69.
References
Configurations
Configuration 1 (hide)
|
History
04 Mar 2025, 12:24
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Smartypantsplugins sp Project \& Document Manager
Smartypantsplugins |
|
| CWE | ||
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.8 |
| References | () https://patchstack.com/database/vulnerability/sp-client-document-manager/wordpress-sp-project-document-manager-plugin-4-69-contributor-sql-injection-vulnerability?_s_id=cve - Third Party Advisory | |
| CPE | cpe:2.3:a:smartypantsplugins:sp_project_\&_document_manager:*:*:*:*:*:wordpress:*:* |
28 Feb 2024, 14:06
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2024-02-28 13:15
Updated : 2025-03-04 12:24
NVD link : CVE-2024-24868
Mitre link : CVE-2024-24868
JSON object : View
Products Affected
smartypantsplugins
- sp_project_\&_document_manager
CWE
No CWE.