CVE-2025-7670 | JS Archive List Plugin up to 6.1.5 on WordPress build_sql_where sql injection

Inserito da Angelo Barbosa | Ago 18, 2025 | CVE

A vulnerability classified as critical was found in JS Archive List Plugin up to 6.1.5 on WordPress. This vulnerability affects the function build_sql_where. Executing manipulation can lead to sql injection.

This vulnerability appears as CVE-2025-7670. The attack may be performed from a remote location. There is no available exploit.

CVE-2025-7670 | JS Archive List Plugin up to 6.1.5 on WordPress build_sql_where sql injection

Post correlati

CVE-2024-43787 | honojs hono up to 4.5.7 cross-site request forgery

CVE-2025-7180 | code-projects Staff Audit System 1.0 /login.php User sql injection

CVE-2024-9292 | Bridge Core Plugin up to 3.2.0 on WordPress Shortcode cross site scripting

CVE-2024-39393 | Adobe InDesign Desktop up to 18.5.2/19.4 out-of-bounds (apsb24-56)