CVE-2024-6723

Name of the Vulnerable Software and Affected Versions The AI Engine WordPress plugin versions prior to 2.4.8

Description The issue is related to a SQL injection that occurs due to improper sanitization and escaping of a parameter in a SQL statement. This can be exploited by admin users when viewing chatbot discussions.

Recommendations For versions prior to 2.4.8, update to version 2.4.8 or later to resolve the issue. As a temporary workaround, consider restricting access to chatbot discussions for admin users until the update is applied.