A vulnerability, which was classified as critical, was found in Library Management System Plugin up to 3.5.7 on WordPress. This affects an unknown part of the component SQL Query Handler. Such manipulation leads to sql injection.

This vulnerability is listed as CVE-2026-12582. The attack may be performed from remote. There is no available exploit.