2 matches found
CVE-2025-2107
CVE-2025-2107 concerns the WordPress plugin ArielBrailovsky-ViralAd . The vulnerability is an Unauthenticated SQL Injection via the id parameter in the function printResultAndDie() for all versions up to and including 1.0.8. The issue arises from inadequate input escaping and lack of parameterize...
CVE-2025-2107 Arielbrailovsky-Viralad <= 1.0.8 - Unauthenticated SQL Injection
The ArielBrailovsky-ViralAd plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter of the printResultAndDie function in all versions up to, and including, 1.0.8 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL...