3 matches found
CVE-2025-31552 WordPress RSVPMarker plugin <= 11.6.7 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in davidfcarr RSVPMarker rsvpmaker allows SQL Injection.This issue affects RSVPMarker : from n/a through = 11.6.7...
CVE-2025-31552
CVE-2025-31552 pertains to a SQL Injection vulnerability in the WordPress RSVPMarker plugin. Public docs consistently describe improper neutralization of special elements in SQL commands as the root cause, affecting RSVPMarker versions up to 11.4.8 (per NVD/RedHat/CVE listings) and, per PatchStac...
CVE-2025-24600
CVE-2025-24600 concerns the WordPress RSVPMarker (RSVPMaker) plugin with a Missing Authorization vulnerability affecting RSVPMaker versions up to and including 11.4.5. Public records (RH, Wordfence, Patchstack) indicate the issue is a Broken Access Control/Missing Authorization flaw, and patches ...