8 matches found
CVE-2025-10652
The Robcore Netatmo plugin for WordPress is vulnerable to SQL Injection via the ‘moduleid’ attribute of the robcore-netatmo shortcode in all versions up to, and including, 1.7 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query...
CVE-2025-10652
The Robcore Netatmo plugin for WordPress is vulnerable to SQL Injection via the ‘moduleid’ attribute of the robcore-netatmo shortcode in all versions up to, and including, 1.7 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query...
CVE-2025-10652 Robcore Netatmo <= 1.7 - Authenticated (Contributor+) SQL Injection via robcore-netatmo Shortcode
The Robcore Netatmo plugin for WordPress is vulnerable to SQL Injection via the ‘moduleid’ attribute of the robcore-netatmo shortcode in all versions up to, and including, 1.7 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query...
CVE-2025-10652 Robcore Netatmo <= 1.7 - Authenticated (Contributor+) SQL Injection via robcore-netatmo Shortcode
The Robcore Netatmo plugin for WordPress is vulnerable to SQL Injection via the ‘moduleid’ attribute of the robcore-netatmo shortcode in all versions up to, and including, 1.7 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query...
CVE-2025-10652
CVE-2025-10652 affects the Robcore Netatmo WordPress plugin up to v1.7. It is an SQL Injection via the module_id attribute in the robcore-netatmo shortcode. The vulnerability allows authenticated attackers with Contributor-level access and above to inject additional SQL into existing queries, pot...
PT-2025-38627
Name of the Vulnerable Software and Affected Versions Robcore Netatmo plugin for WordPress versions up to and including 1.7 Description The Robcore Netatmo plugin for WordPress is susceptible to SQL Injection through the module id attribute of the robcore-netatmo shortcode. Insufficient escaping ...
WordPress plugin Robcore Netatmo SQL注入漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A SQL injectio...
WordPress Robcore Netatmo plugin <= 1.7 - Authenticated (Contributor+) SQL Injection via robcore-netatmo Shortcode vulnerability
Authenticated Contributor+ SQL Injection via robcore-netatmo Shortcode vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Robcore Netatmo versions = 1.7...