ГлавнаяУязвимости → CVE-2025-1446
9.8критическая

CVE-2025-1446

Описание

The Pods WordPress plugin before 3.2.8.2 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks

Затрагиваемое ПО
Podsfoundation Pods
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://wpscan.com/vulnerability/c170fb45-7ed5-40ef-99f6-8da035a23d89/https://wpscan.com/vulnerability/c170fb45-7ed5-40ef-99f6-8da035a23d89/