Unvalidated input in the Anti-Spam by CleanTalk WordPress plugin, versions before 5.149, lead to multiple authenticated SQL injection vulnerabilities, however, it requires high privilege user (admin+).
[
{
"product": "Anti-Spam by CleanTalk",
"vendor": "Unknown",
"versions": [
{
"lessThan": "5.149",
"status": "affected",
"version": "5.149",
"versionType": "custom"
}
]
}
]