8 matches found
CVE-2026-15293
The WP Business Intelligence Lite plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 3.2.0. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for authenticated attackers, with...
CVE-2026-15293 WP Business Intelligence Lite <= 3.2.0 - Authenticated (Subscriber+) Missing Authorization to Privilege Escalation via Arbitrary SQL Modification
The WP Business Intelligence Lite plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 3.2.0. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for authenticated attackers, with...
CVE-2026-15293
The WP Business Intelligence Lite WordPress plugin (versions up to and including 3.2.0) is affected by an authorization bypass vulnerability. The issue arises because the plugin does not properly verify user permissions before performing an action, enabling authenticated users with Subscriber-lev...
CVE-2015-9326
The wp-business-intelligence-lite plugin before 1.6.3 for WordPress has SQL injection...
WordPress wp-business-intelligence-lite plugin SQL injection vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. wp-business-intelligence-lite is a plugin used to create responsive charts. A SQL injection vulnerability exists in the WordPress...
Sql injection
The wp-business-intelligence-lite plugin before 1.6.3 for WordPress has SQL injection...
CVE-2015-9326
CVE-2015-9326 affects the WordPress plugin wp-business-intelligence-lite prior to version 1.6.3. The vulnerability is a SQL injection in the plugin that could allow an attacker to execute arbitrary SQL commands, with impact described as high (NVD CVSS2: 7.5, high; CVSS3: 9.8, critical). Affected ...
WordPress Business Intelligence Lite SQL Injection Vulnerability
WordPress Business Intelligence Lite is prone to an SQL injection SQLi vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...