{"id":"CVE-2024-21747","details":"Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in weDevs WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting.This issue affects WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting: from n/a through 1.12.8.\n\n","modified":"2026-04-10T05:08:59.063977Z","published":"2024-01-08T17:15:08.163Z","references":[{"type":"ADVISORY","url":"https://patchstack.com/database/vulnerability/erp/wordpress-wp-erp-plugin-1-12-8-sql-injection-vulnerability?_s_id=cve"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/wp-erp/wp-erp","events":[{"introduced":"0"},{"fixed":"4887693fd3cfcd77f012cfbfe3e4ab47b3e3562c"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"1.12.9"}]}}],"versions":["v1.11.0","v1.11.1","v1.11.2","v1.11.3","v1.12.0","v1.12.1","v1.12.2","v1.12.3","v1.12.5","v1.12.6","v1.12.7","v1.12.8"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-21747.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N"}]}