CVE-2024-2876
WooCommerce plugin for WordPress is vulnerable to SQL Injection via the run function of the IG_ES_Subscribers_Query class in all versions up to, and including, 5.7.14 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.
