cleantalk
Vulnerabilities and Security Researches

CleverReach® WP, CVE-2025-49059

CVE, Research URL

CVE-2025-49059

Home page URL

Security reports for CleverReach® WP

Application

CleverReach® WP

Published on
Aug 14, 2025
Research Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in CleverReach® CleverReach® WP cleverreach-wp allows SQL Injection.This issue affects CleverReach® WP: from n/a through <= 1.5.20.
Affected versions
max 1.5.21.
Status
vulnerable
Previous vulnerability researches
Posts List Designer by Category &#8211; List Category Posts Or Recent Posts (CVE-2024-13362) , May 03, 2026
Posts List Designer by Category &#8211; List Category Posts Or Recent Posts (067b21bad31febc63c1cd2b3a0a852869e1df9cc) , Jun 06, 2024
Posts List Designer by Category &#8211; List Category Posts Or Recent Posts (CVE-2022-4749) , Jun 06, 2024
Posts List Designer by Category &#8211; List Category Posts Or Recent Posts (e7273a52d37b10c428e20c81e144ab0d172f52c8) , Jun 16, 2026
Posts List Designer by Category &#8211; List Category Posts Or Recent Posts (CVE-2024-23502) , Jun 06, 2024
New vulnerability
leenk.me (753d31765913b4d2dbb8af0a5512e5f1f8c70c61) , Jun 16, 2026
Social Hashtags (5abd4657-8a58-4d97-b8cb-b67235ab5b8a) , Jun 16, 2026
Social Hashtags (1965c7b04565befbb11c28b56cb6922733a47b03) , Jun 16, 2026
Social Hashtags (a7cf6766582e354e702766a86f85716127d19bdc) , Jun 16, 2026
Simple Calendar &#8211; Google Calendar Plugin (e98a6264-9c5a-417f-b2f8-bd0017b411a0) , Jun 16, 2026