exploitDog

CVE-2025-26946

Опубликовано: 25 фев. 2025

Источник: nvd

EPSS Низкий

Описание

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in jgwhite33 WP Yelp Review Slider wp-yelp-review-slider allows Blind SQL Injection.This issue affects WP Yelp Review Slider: from n/a through <= 8.1.

Ссылки

https://patchstack.com/database/Wordpress/Plugin/wp-yelp-review-slider/vulnerability/wordpress-wp-yelp-review-slider-plugin-8-1-sql-injection-vulnerability?_s_id=cve

EPSS

Процентиль: 16%

0.00051

Низкий

Дефекты

CWE-89

Связанные уязвимости

GHSA-29m8-q2f8-5742

CVSS3: 7.6

github

около 1 года назад

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in jgwhite33 WP Yelp Review Slider allows Blind SQL Injection. This issue affects WP Yelp Review Slider: from n/a through 8.1.

EPSS

Процентиль: 16%

0.00051

Низкий

Дефекты

CWE-89