Lucene search
+L

WordPress Core <= 7.0.1 - Unauthenticated SQL Injection vulnerability

🗓️ 17 Jul 2026 18:23:36Reported by TF1T, dtro, and haongoType 
patchstack
 patchstack
🔗 patchstack.com👁 9 Views

Unauthenticated SQL injection in WordPress Core versions seven zero one and earlier.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
GithubExploit
Exploit for CVE-2026-60137
18 Jul 202606:40
githubexploit
GithubExploit
Exploit for CVE-2026-63030
18 Jul 202600:44
githubexploit
GithubExploit
Exploit for CVE-2026-60137
17 Jul 202623:15
githubexploit
GithubExploit
Exploit for CVE-2026-63030
18 Jul 202602:49
githubexploit
GithubExploit
Exploit for CVE-2026-60137
18 Jul 202603:16
githubexploit
ATTACKERKB
CVE-2026-60137
17 Jul 202619:14
attackerkb
Circl
CVE-2026-60137
17 Jul 202620:22
circl
CVE
CVE-2026-60137
17 Jul 202619:14
cve
Cvelist
CVE-2026-60137 WordPress < 7.0.2 - Facilitated SQL Injection via author__not_in in WP_Query
17 Jul 202619:14
cvelist
EUVD
EUVD-2026-45279
17 Jul 202619:14
euvd
Rows per page
Vulners
Node
wordpresswordpressRange7.0.1

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jul 2026 18:23Current
5.9Medium risk
Vulners AI Score5.9
CVSS 3.19.1
SSVC
9