2 matches found
CVE-2025-14770
CVE-2025-14770 concerns the WordPress plugin Shipping Rate By Cities. Connected sources confirm an SQL Injection vulnerability introduced by insufficient escaping and underpreparation of the city parameter, affecting versions up to and including 2.0.0. The flaw allows unauthenticated attackers to...
PHP Scripts Mall Event Search Script SQL Injection Vulnerability
PHP Scripts Mall Event Search Script is a PHP based online event registration script from PHP Scripts Mall India. The script can be embedded into a website and accept online event bookings from other organizations or companies. A SQL injection vulnerability exists in PHP Scripts Mall Event Search...