cleantalk
Vulnerabilities and Security Researches

Axact Author List Widget, f2497798-90dd-4f93-b6ff-31e02f8ca6fc

CVE, Research URL

f2497798-90dd-4f93-b6ff-31e02f8ca6fc

Home page URL

Security reports for Axact Author List Widget

Application

Axact Author List Widget

Published on
-
Research Description
Axact Author List Widget [knr-author-list-widget] < 3.0.0 (closed) KNR Author List Widget &lt; 3.0.0 - Unauthenticated SQL Injection The plugin does not sanitise and escape the listitem parameter before using it in a SQL statement in the knrAuthorListCustomSortSave.php file, leading to an unauthenticated SQL Injection
Affected versions
max 3.0.0.
Status
vulnerable
Previous vulnerability researches
Axact Author List Widget (64c0451c94de7e0131133a488609353b793f2348) , Jun 07, 2024
Axact Author List Widget (CVE-2025-22514) , Jan 15, 2025
Axact Author List Widget (b36562836dd76568d374ac032aa3b6cad3c82287) , Jun 16, 2026
Axact Author List Widget (f2497798-90dd-4f93-b6ff-31e02f8ca6fc) , Jun 16, 2026
New vulnerability
Survey Maker &#8211; Best WordPress Survey Plugin (fc04ca746b32e86094504fa87e14fcc6e895ad88) , Jun 16, 2026
Survey Maker &#8211; Best WordPress Survey Plugin (a3f2e0c73a4c81115beecf8f1d689bce0c191743) , Jun 16, 2026
Survey Maker &#8211; Best WordPress Survey Plugin (bd2e0643-c83b-4ca6-9332-66e4c49252ba) , Jun 16, 2026
Survey Maker &#8211; Best WordPress Survey Plugin (43328a5b05bd39176219d88c42154bd551884246) , Jun 16, 2026
Ultimate Product Catalog (1e3e9939-9948-4184-98cf-7a76b5ee7da9) , Jun 16, 2026