CVE-2025-25150

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Stylemix uListing ulisting allows Blind SQL Injection.This issue affects uListing: from n/a through = 2.1.6...

CVE-2025-25112

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in kareemsultan Social Links social-links allows Command Line Execution through SQL Injection.This issue affects Social Links: from n/a through = 1.2...

CVE-2025-26535

CVE-2025-26535 is a SQL Injection vulnerability in WordPress plugin Bitcoin / AltCoin Payment Gateway for WooCommerce (and Multivendor store). Affected versions are up to 1.7.6. The issue permits Blind SQL Injection (per CVE description) with a CVSS v3.1 base score of 9.3 (CRITICAL, NETW/LOW). Co...

CVE-2025-25150

CVE-2025-25150 describes an SQL Injection vulnerability in the WordPress plugin uListing (Directory Listings) where improper neutralization of user input enables blind SQL injection. Affected versions are uListing up to 2.1.6 (inclusive). The CVSS is 3.1 v3 base score 9.3 (CRITICAL), indicating h...

CVE-2025-25112 WordPress Social Links plugin <= 1.2 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in NotFound Social Links allows Blind SQL Injection. This issue affects Social Links: from n/a through 1.2...

CVE-2025-25112

CVE-2025-25112 affects the WordPress Social Links plugin (vulnerable

CVE-2025-26974

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in WPExperts.io WP Multistore Locator wp-multi-store-locator allows Blind SQL Injection.This issue affects WP Multistore Locator: from n/a through = 2.5.1...

CVE-2025-26971 WordPress Poll Maker <= 5.6.5 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Ays Pro Poll Maker poll-maker allows Blind SQL Injection.This issue affects Poll Maker: from n/a through = 5.6.5...

CVE-2025-26971 WordPress Poll Maker <= 5.6.5 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Ays Pro Poll Maker poll-maker allows Blind SQL Injection.This issue affects Poll Maker: from n/a through = 5.6.5...

CVE-2025-26946

CVE-2025-26946 refers to a SQL injection vulnerability in the WordPress plugin WP Yelp Review Slider. Connected sources corroborate that the issue affects WP Yelp Review Slider up to version 8.1 and is exploitable by an authenticated administrator. The vulnerability is described as an SQL injecti...

PT-2025-7858

Name of the Vulnerable Software and Affected Versions Jürgen Müller Easy Quotes versions 1.2.2 and earlier Description The issue is related to an SQL Injection vulnerability, specifically a Blind SQL Injection, due to the improper neutralization of special elements used in an SQL command...

CVE-2025-27297

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in guelben Bravo Search & Replace bravo-search-and-replace allows Blind SQL Injection.This issue affects Bravo Search & Replace: from n/a through = 1.0...

CVE-2025-27297 WordPress Bravo Search & Replace Plugin <= 1.0 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in guelben Bravo Search & Replace bravo-search-and-replace allows Blind SQL Injection.This issue affects Bravo Search & Replace: from n/a through = 1.0...

CVE-2025-27297

CVE-2025-27297 affects the WordPress Bravo Search & Replace plugin (versions

CVE-2025-22639

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Techspawn Distance Rate Shipping for WooCommerce distance-rate-shipping-for-woocommerce-pro allows Blind SQL Injection.This issue affects Distance Rate Shipping for WooCommerce: from n/a through =...

CVE-2025-22639

CVE-2025-22639 pertains to the WordPress plugin Distance Rate Shipping for WooCommerce (

CVE-2025-26755

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in jgwhite33 WP Airbnb Review Slider wp-airbnb-review-slider allows Blind SQL Injection.This issue affects WP Airbnb Review Slider: from n/a through = 3.9...

CVE-2025-26755

CVE-2025-26755 concerns the WordPress plugin WP Airbnb Review Slider. The vulnerability is an SQL Injection due to improper neutralization of input in the plugin, allowing Blind SQL Injection on versions

CVE-2025-25116

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in sudipto Link to URL / Post link-to-url-post allows Blind SQL Injection.This issue affects Link to URL / Post: from n/a through = 1.3...

CVE-2025-25116

CVE-2025-25116 affects the WordPress plugin Link to URL / Post (versions n/a through 1.3). Root cause: Improper Neutralization of Special Elements used in an SQL Command, enabling Blind SQL Injection. Impact aligns with CVSS v3.1: High overall (7.6), with confidentiality impact High and availabil...