344 matches found
EUVD-2026-37660
Unauthenticated SQL Injection in WPJobster = 6.3.5 versions...
CVE-2026-54811
Unauthenticated SQL Injection in WP eMember v10.9.4 versions...
CVE-2026-49080
Unauthenticated SQL Injection in wpDataTables = 7.3.6 versions...
CVE-2026-49084
Unauthenticated SQL Injection in JetEngine 3.8.9.1 versions...
CVE-2026-49076
Unauthenticated SQL Injection in JetEngine = 3.8.9.1 versions...
CVE-2026-39438
Unauthenticated SQL Injection in ListingPro = 2.9.10 versions...
CVE-2026-39438
CVE-2026-39438 : Unauthenticated SQL Injection in the WordPress ListingPro plugin (versions
CVE-2026-39574
Unauthenticated SQL Injection in InPost Gallery = 2.1.4.6 versions...
CVE-2026-52715 WordPress GEO my WordPress plugin <= 4.5.5 - SQL Injection vulnerability
Unauthenticated SQL Injection in GEO my WordPress = 4.5.5 versions...
PT-2026-50126
Unauthenticated SQL Injection in wpDataTables = 7.3.6 versions...
EUVD-2026-36943
Unauthenticated SQL Injection in WP Maps = 4.9.1 versions...
CVE-2026-42381
Unauthenticated SQL Injection in Funnel Builder by FunnelKit = 3.15.0.1 versions...
CVE-2026-40762
Unauthenticated SQL Injection in WPGraphQL 2.11.1 versions...
CVE-2026-39502
Unauthenticated SQL Injection in Form Maker by 10Web = 1.15.38 versions...
CVE-2026-49067 WordPress Advanced 301 and 302 Redirect plugin <= 1.6.9 - SQL Injection vulnerability
Unauthenticated SQL Injection in Advanced 301 and 302 Redirect = 1.6.9 versions...
CVE-2026-48886
The CVE-2026-48886 entry describes an unauthenticated SQL Injection in WordPress JS Help Desk plugin versions
CVE-2026-42386 WordPress Order Delivery Date for WooCommerce plugin <= 4.5.1 - SQL Injection vulnerability
Unauthenticated SQL Injection in Order Delivery Date for WooCommerce = 4.5.1 versions...
EUVD-2026-36807
Unauthenticated SQL Injection in wpForo Forum = 3.0.4 versions...
CVE-2026-39441
CVE-2026-39441 affects the WordPress plugin Feed KuantoKusta for WooCommerce – Free, version
CVE-2026-48114 Metacat has an unauthenticated SQL injection vulnerability
Metacat is data repository software that helps researchers preserve, share, and discover data. Versions 2.0.0 and and above contain an unauthenticated SQL injection in the /harvesterRegistration endpoint. HarvesterRegistration.dbInsert builds an INSERT against HARVESTSITESCHEDULE via string...