5 matches found
WordPress Attention Bar plugin <= 0.7.2.1 - Authenticated (Contributor+) SQL Injection vulnerability
Authenticated Contributor+ SQL Injection vulnerability discovered by WPScan in WordPress Plugin Attention Bar versions = 0.7.2.1...
CVE-2025-12502 Attention Bar <= 0.7.2.1 - Admin+ SQLi
The attention-bar WordPress plugin through 0.7.2.1 does not sanitize and escape a parameter before using it in a SQL statement, allowing high privilege users such as administrator to perform SQL injection attacks...
CVE-2025-12502
CVE-2025-12502 affects the WordPress plugin Attention Bar (versions up to 0.7.2.1). The vulnerability is an authenticated SQL injection where a parameter is not properly sanitized/escaped before use in a SQL statement, allowing high-privilege users (e.g., Administrators/Contributor+) to perform S...
CVE-2025-12502 Attention Bar <= 0.7.2.1 - Admin+ SQLi
The attention-bar WordPress plugin through 0.7.2.1 does not sanitize and escape a parameter before using it in a SQL statement, allowing high privilege users such as administrator to perform SQL injection attacks...
PT-2025-47556
The attention-bar WordPress plugin through 0.7.2.1 does not sanitize and escape a parameter before using it in a SQL statement, allowing high privilege users such as administrator to perform SQL injection attacks...