exploitDog

GHSA-hrp9-p693-x2cg

Опубликовано: 26 янв. 2026

Источник: github

Github: Не прошло ревью

CVSS3: 6.8

Описание

The Recipe Card Blocks Lite WordPress plugin before 3.4.13 does not sanitize and escape a parameter before using it in a SQL statement, allowing contributors and above to perform SQL injection attacks.

The Recipe Card Blocks Lite WordPress plugin before 3.4.13 does not sanitize and escape a parameter before using it in a SQL statement, allowing contributors and above to perform SQL injection attacks.

Ссылки

EPSS

Процентиль: 6%

0.00024

Низкий

6.8 Medium

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2025-14973

CVSS3: 6.8

nvd

13 дней назад

The Recipe Card Blocks Lite WordPress plugin before 3.4.13 does not sanitize and escape a parameter before using it in a SQL statement, allowing contributors and above to perform SQL injection attacks.

EPSS

Процентиль: 6%

0.00024

Низкий

6.8 Medium

CVSS3

CVE ID

Дефекты

CWE-89