Vulnerabilities

CVE-2025-13001

by Fred · 02/12/2025

The donation WordPress plugin through 1.0 does not sanitize and escape a parameter before using it in a SQL statement, allowing high privilege users, such as admin to perform SQL injection attacks

More information : https://wpscan.com/vulnerability/4e7a8154-46bf-44c9-ad9a-273e99ae2104/

Similar

Tags: Cybersecurity Alert