4 matches found
CVE-2025-26974
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in WPExperts.io WP Multistore Locator wp-multi-store-locator allows Blind SQL Injection.This issue affects WP Multistore Locator: from n/a through = 2.5.1...
CVE-2025-26974
creationtimestamp| type| source ---|---|--- 2025-02-25 14:24:07+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/5280 2025-02-25 17:22:56+00:00| seen| https://t.me/cvedetector/18880 2025-02-25 17:43:03+00:00| seen|...
CVE-2025-26974 WordPress WP Multi Store Locator plugin <= 2.5.1 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in WPExperts.io WP Multistore Locator wp-multi-store-locator allows Blind SQL Injection.This issue affects WP Multistore Locator: from n/a through = 2.5.1...
CVE-2025-26974
CVE-2025-26974 describes an SQL Injection in the WP Multistore Locator (WP Store Locator) WordPress plugin. Affected range: WP Multistore Locator versions up to 2.5.1 (vendor indicates vulnerability existed in versions ≤ 2.5.1; initial doc shows product/versions and CVSS info). The entry is marke...