CVE-2025-7670 | JS Archive List Plugin up to 6.1.5 on WordPress build_sql_where sql injection

Inserito da Angelo Barbosa | Ago 18, 2025 | CVE

A vulnerability classified as critical was found in JS Archive List Plugin up to 6.1.5 on WordPress. This vulnerability affects the function build_sql_where. Executing manipulation can lead to sql injection.

This vulnerability appears as CVE-2025-7670. The attack may be performed from a remote location. There is no available exploit.

CVE-2025-7670 | JS Archive List Plugin up to 6.1.5 on WordPress build_sql_where sql injection

Post correlati

CVE-2022-45352 | Muffingroup Betheme Plugin up to 26.6.1 on WordPress authorization

CVE-2023-51679 | BulkGate SMS Plugin for WooCommerce up to 3.0.2 on WordPress authorization

CVE-2023-50764 | Scriptler Plugin up to 342.v6a_89fd40f466 on Jenkins HTTP Endpoint permission

CVE-2025-6398 | ASUS AI Suite prior 3.03.42 IOMap64.sys null pointer dereference