CVE-2024-24868

Severity CVSS v4.0:
Pending analysis
Type:
CWE-89 SQL Injection
Publication date:
28/02/2024
Last modified:
04/03/2025

Description

Improper Neutralization of Special Elements used in an SQL Command (&amp;#39;SQL Injection&amp;#39;) vulnerability in Smartypants SP Project &amp; Document Manager.This issue affects SP Project &amp; Document Manager: from n/a through 4.69.<br /> <br />

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:smartypantsplugins:sp_project_\&_document_manager:*:*:*:*:*:wordpress:*:* 4.70 (excluding)