cleantalk
Vulnerabilities and Security Researches

Classic Editor and Classic Widgets, CVE-2024-47312

CVE, Research URL

CVE-2024-47312

Home page URL

Security reports for Classic Editor and Classic Widgets

Application

Classic Editor and Classic Widgets

Published on
Oct 17, 2024
Research Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPGrim Classic Editor and Classic Widgets allows SQL Injection.This issue affects Classic Editor and Classic Widgets: from n/a through 1.4.1.
Affected versions
max 1.4.2.
Status
vulnerable
Previous vulnerability researches
Classic Editor and Classic Widgets (CVE-2023-27434) , Jun 06, 2024
Classic Editor and Classic Widgets (CVE-2024-47312) , Sep 29, 2024
New vulnerability
OOPSpam Anti-Spam (CVE-2026-32544) , Mar 31, 2026
NotificationX – Best FOMO, Social Proof, WooCommerce Sales Popup & Notification Bar Plugin With Elementor (CVE-2026-27042) , Mar 31, 2026
The Conference (CVE-2026-32335) , Mar 31, 2026
WP Booking System – Booking Calendar (CVE-2025-68515) , Mar 31, 2026
UPI QR Code Payment Gateway for WooCommerce (CVE-2025-67969) , Mar 31, 2026