CVE-2024-36082

Name of the Vulnerable Software and Affected Versions Music Store - WordPress eCommerce versions prior to 1.1.14

Description A SQL injection issue allows a remote authenticated attacker with administrative privileges to execute arbitrary SQL commands, potentially obtaining or altering information stored in the database.

Recommendations For versions prior to 1.1.14, update to version 1.1.14 or later to resolve the issue. As a temporary workaround, consider restricting administrative access to trusted users until the update is applied.