CVE-2025-11980 | Quick Featured Images Plugin up to 13.7.3 on WordPress delete_orphaned sql injection

Inserito da Angelo Barbosa | Nov 8, 2025 | CVE

A vulnerability was found in Quick Featured Images Plugin up to 13.7.3 on WordPress. It has been rated as critical. This affects the function delete_orphaned. The manipulation leads to sql injection.

This vulnerability is referenced as CVE-2025-11980. Remote exploitation of the attack is possible. No exploit is available.

CVE-2025-11980 | Quick Featured Images Plugin up to 13.7.3 on WordPress delete_orphaned sql injection

Post correlati

CVE-2025-0197 | code-projects Point of Sales and Inventory Management System 1.0 /user/search.php name sql injection

CVE-2024-28988 | SolarWinds Web Help Desk up to 12.8.3 Hotfix 2 AjaxProxy deserialization

CVE-2024-24758 | Undici Header Proxy-Authorization unknown vulnerability

CVE-2024-34123 | Adobe Premiere Pro up to 23.6.5/24.4.1 untrusted search path (apsb24-46)