CVE-2024-49623

Name of the Vulnerable Software and Affected Versions Duplicate Title Validate versions n/a through 1.0

Description The issue is related to an SQL Injection vulnerability, specifically an improper neutralization of special elements used in an SQL command. This allows for Blind SQL Injection, which can be exploited by attackers. The estimated number of potentially affected devices worldwide is not provided. There is no information about real-world incidents where this issue was exploited. The vulnerability is related to the Duplicate Title Validate plugin.

Recommendations For versions n/a through 1.0, update to a version that contains a fix for this issue, as soon as it becomes available. As a temporary workaround, consider restricting access to the SQL commands to minimize the risk of exploitation. Avoid using user-supplied input in SQL commands until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.