CVE-2025-14124 | Team Plugin up to 5.0.10 on WordPress Ajax Action sql injection

Inserito da Angelo Barbosa | Gen 5, 2026 | CVE

A vulnerability was found in Team Plugin up to 5.0.10 on WordPress. It has been declared as critical. This affects an unknown part of the component Ajax Action Handler. Such manipulation leads to sql injection.

This vulnerability is documented as CVE-2025-14124. The attack can be executed remotely. There is not any exploit available.

It is recommended to upgrade the affected component.

CVE-2025-14124 | Team Plugin up to 5.0.10 on WordPress Ajax Action sql injection

Post correlati

CVE-2023-7307 | Sangfor Behavior Management System XML Parser /src/sangforindex xml external entity reference

CVE-2025-9408 | zephyrproject-rtos Zephyr up to 4.2 System Call privilege context switching error

CVE-2025-14200 | alokjaiswal Hotel-Management-services-using-MYSQL-and-php up to 5f8b60a7aa6c06a5632de569d4e3f6a8cd82f76f Request Pending Page /usersub.php cross site scripting

CVE-2024-4968 | SourceCodester Interactive Map with Marker 1.0 Add Marker Marker Name cross site scripting