CVE-2025-22349 | Owen Cutajar & Hyder Jaffari Auction Plugin up to 3.7 on WordPress sql injection

Posted by Angelo Barbosa | Jan 7, 2025 | CVE

A vulnerability, which was classified as critical, was found in Owen Cutajar & Hyder Jaffari Auction Plugin up to 3.7 on WordPress. Affected is an unknown function. The manipulation leads to sql injection.

This vulnerability is traded as CVE-2025-22349. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-22349 | Owen Cutajar & Hyder Jaffari Auction Plugin up to 3.7 on WordPress sql injection

Related Posts

CVE-2023-41038 | FirebirdSQL Firebird prior 4.0.4.2981/5.0.0.1176 SET BIND Statement allocation of resources (GHSA-6fv8-8rwr-9692)

CVE-2024-47434 | Adobe Substance3D Painter up to 10.1.0 out-of-bounds write (apsb24-86)

CVE-2024-6193 | itsourcecode Vehicle Management System 1.0 driverprofile.php driverid sql injection

CVE-2024-8596 | Autodesk AutoCAD 2025.1 MODEL File libodxdll.dll out-of-bounds write