CVE-2024-6723 Information

Description

The AI Engine WordPress plugin before 2.4.8 does not properly sanitise and escape a parameter before using it in a SQL statement leading to a SQL injection exploitable by admin users when viewing chatbot discussions.

Reference

https://wpscan.com/vulnerability/fbd2152e-0aa1-4b56-a6a3-2e6ec78e08a5/