SQL Injection Vulnerability in LearnPress Export Import
CVE-2024-31241
7.6HIGH
What is CVE-2024-31241?
An SQL Injection vulnerability exists in the LearnPress Export Import plugin developed by ThimPress, allowing attackers to manipulate SQL queries via untrusted inputs. This can lead to unauthorized access to sensitive information or destabilization of the database. All versions prior to 4.0.3 are vulnerable, emphasizing the necessity for users to update their plugins immediately to mitigate risk.
Affected Version(s)
LearnPress Export Import <= 4.0.3