PT-2025-21479 · WordPress · Push Notification For Post/Buddypress
Name of the Vulnerable Software and Affected Versions: The Push Notification for Post and BuddyPress WordPress plugin versions prior to 1.9.4 Description: The issue arises from the plugin's failure to properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action...