CVE-2026-8444 | WP Review Slider Pro Plugin up to 12.6.8 on WordPress AJAX Action get_results curselrevs sql injection

Inserito da Angelo Barbosa | Giu 16, 2026 | CVE

A vulnerability was found in WP Review Slider Pro Plugin up to 12.6.8 on WordPress. It has been rated as critical. This impacts the function get_results of the component AJAX Action Handler. Performing a manipulation of the argument curselrevs results in sql injection.

This vulnerability is cataloged as CVE-2026-8444. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2026-8444 | WP Review Slider Pro Plugin up to 12.6.8 on WordPress AJAX Action get_results curselrevs sql injection

Post correlati

CVE-2025-27139 | Combodo iTop up to 2.7.11/3.1.1 cross site scripting (GHSA-c6mg-9537-c8cf)

CVE-2025-55618 | Hyundai Navigation App STD5W.EUR.HMC.230516.afa908d Profile name cross site scripting

CVE-2024-53029 | Qualcomm Snapdragon Auto up to SRV1M memory corruption

CVE-2025-0929 | Lewe TeamCal Neo 3.8.2 /teamcal/src/index.php abs sql injection