exploitDog

CVE-2025-26946

Опубликовано: 25 фев. 2025

Источник: nvd

CVSS3: 7.6

EPSS Низкий

Описание

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in jgwhite33 WP Yelp Review Slider allows Blind SQL Injection. This issue affects WP Yelp Review Slider: from n/a through 8.1.

Ссылки

https://patchstack.com/database/wordpress/plugin/wp-yelp-review-slider/vulnerability/wordpress-wp-yelp-review-slider-plugin-8-1-sql-injection-vulnerability?_s_id=cve

EPSS

Процентиль: 20%

0.00065

Низкий

7.6 High

CVSS3

Дефекты

CWE-89

Связанные уязвимости

GHSA-29m8-q2f8-5742

CVSS3: 7.6

github

6 месяцев назад

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in jgwhite33 WP Yelp Review Slider allows Blind SQL Injection. This issue affects WP Yelp Review Slider: from n/a through 8.1.

EPSS

Процентиль: 20%

0.00065

Низкий

7.6 High

CVSS3

Дефекты

CWE-89