CVE-2024-43144

Name of the Vulnerable Software and Affected Versions StylemixThemes Cost Calculator Builder versions 3.2.15 and earlier

Description The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows unauthorized database access. The estimated number of potentially affected devices is not specified. There is no information about real-world incidents where this issue was exploited.

Technical details about exploitation include the vulnerability being an SQL Injection issue, but specific API endpoints, vulnerable parameters, or function names are not mentioned.

Recommendations For StylemixThemes Cost Calculator Builder versions 3.2.15 and earlier, update the software immediately to patch the security issue. As a temporary workaround, consider restricting access to sensitive database areas until the update is applied. Avoid using user-input data directly in SQL commands until the issue is resolved.