CVE-2024-49621

UNKNOWN 0.0

WordPress APA Register Newsletter Form plugin <= 1.0.0 - CSRF to SQL Injection vulnerability

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Cross-Site Request Forgery (CSRF) vulnerability in aatmaadhikari APA Register Newsletter Form apa-register-newsletter-form allows SQL Injection.This issue affects APA Register Newsletter Form: from n/a through <= 1.0.0.

CWE	CWE-352
Vendor	aatmaadhikari
Product	apa register newsletter form
Published	Oct 20, 2024
Last Updated	Apr 1, 2026

Stay Ahead of the Next One

Get instant alerts for aatmaadhikari apa register newsletter form

Be the first to know when new unknown vulnerabilities affecting aatmaadhikari apa register newsletter form are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

aatmaadhikari / APA Register Newsletter Form

0 ≤ 1.0.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

patchstack.com: https://patchstack.com/database/Wordpress/Plugin/apa-register-newsletter-form/vulnerability/wordpress-apa-register-newsletter-form-plugin-1-0-0-csrf-to-sql-injection-vulnerability?_s_id=cve

Credits

João Pedro S Alcântara (Kinorth) | Patchstack Bug Bounty Program