EUVD-2025-27660

Malicious code in bioql PyPI...

CVE-2025-8692

The Coupon API plugin for WordPress is vulnerable to SQL Injection via the ‘logduration’ parameter in all versions up to, and including, 6.2.12 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...

CVE-2025-8692

CVE-2025-8692 affects the Coupon API plugin for WordPress (versions up to 6.2.9). An authenticated attacker with Administrator+ privileges can exploit SQL Injection via the log_duration parameter to append additional SQL queries and potentially exfiltrate data. Remediation per Patchstack and rela...

WordPress plugin Coupon API SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection...

PT-2025-37138

The Coupon API plugin for WordPress is vulnerable to SQL Injection via the ‘log duration’ parameter in all versions up to, and including, 6.2.9 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...