CVE-2025-0866 | torviswesley Legoeso PDF Manager Plugin up to 1.2.2 on WordPress checkedVals sql injection

Posted by Angelo Barbosa | Feb 20, 2025 | CVE

A vulnerability, which was classified as critical, has been found in torviswesley Legoeso PDF Manager Plugin up to 1.2.2 on WordPress. Affected by this issue is some unknown functionality. The manipulation of the argument checkedVals leads to sql injection.

This vulnerability is handled as CVE-2025-0866. The attack may be launched remotely. There is no exploit available.

CVE-2025-0866 | torviswesley Legoeso PDF Manager Plugin up to 1.2.2 on WordPress checkedVals sql injection

Related Posts

CVE-2024-2781 | Elementor Website Builder Pro Plugin up to 3.20.1 on WordPress video_html_tag cross site scripting

CVE-2024-49629 | Fahad Mahmood Endless Posts Navigation Plugin up to 2.2.7 on WordPress cross-site request forgery

CVE-2023-42718 | Unisoc S8000 Dialer information disclosure

CVE-2023-31634 | TeslaMate up to 1.27.1 Service Port 3000 improper authorization