CVE-2026-6457 | cyberhobo Geo Mashup Plugin up to 1.13.19 on WordPress geo_mashup_null_fields sql injection

Inserito da Angelo Barbosa | Mag 2, 2026 | CVE

A vulnerability classified as critical was found in cyberhobo Geo Mashup Plugin up to 1.13.19 on WordPress. Affected by this vulnerability is an unknown functionality. The manipulation of the argument geo_mashup_null_fields results in sql injection.

This vulnerability is reported as CVE-2026-6457. The attack can be launched remotely. No exploit exists.

CVE-2026-6457 | cyberhobo Geo Mashup Plugin up to 1.13.19 on WordPress geo_mashup_null_fields sql injection

Post correlati

CVE-2024-4062 | Hualai Xiaofang iSC5 3.2.2_112 certificate validation

CVE-2024-39428 | Unisoc S8000 Trusty Service out-of-bounds write

CVE-2024-50839 | Kashipara E-Learning Management System Project 1.0 HTTP POST Request add_subject.php subject_code/title cross site scripting

CVE-2024-5523 | Astrotalks 03-10-2023 searchString sql injection