cleantalk
Vulnerabilities and Security Researches

SQL Chart Builder, CVE-2026-4079

CVE, Research URL

CVE-2026-4079

Home page URL

Security reports for SQL Chart Builder

Application

SQL Chart Builder

Published on
Apr 07, 2026
Research Description
The SQL Chart Builder WordPress plugin before 2.3.8 does not properly escape user input as it is concatened to SQL queries, making it possible for attackers to conduct SQL Injection attacks against the dynamic filter functionality.
Affected versions
max 2.3.8.
Status
vulnerable
Previous vulnerability researches
Happy Addons for Elementor (CVE-2025-68999) , Feb 27, 2026
Happy Addons for Elementor (CVE-2025-30766) , Apr 02, 2025
Happy Addons for Elementor (CVE-2024-5647) , Apr 13, 2026
Happy Addons for Elementor (CVE-2024-10538) , Nov 14, 2024
Happy Addons for Elementor (CVE-2024-12852) , Jan 09, 2025
New vulnerability
PostmarkApp Email Integrator (CVE-2026-1043) , Apr 16, 2026
Name Directory (CVE-2026-1866) , Apr 15, 2026
Name Directory (CVE-2026-3178) , Apr 15, 2026
Online Ordering System For Restaurants & Local Retail by Orderable (CVE-2026-0974) , Apr 15, 2026
Geo Mashup (CVE-2026-2416) , Apr 15, 2026