A vulnerability classified as critical was found in Saad Iqbal APIExperts Square for WooCommerce Plugin up to 4.7.4 on WordPress. Affected by this vulnerability is an unknown functionality of the component SQL Command Handler. Executing a manipulation can lead to sql injection.
This vulnerability is registered as CVE-2026-57810. It is possible to launch the attack remotely. No exploit is available.