cleantalk
Vulnerabilities and Security Researches

PublishPress Revisions: Duplicate Posts, Submit, Approve and Schedule Content Changes, CVE-2026-32539

CVE, Research URL

CVE-2026-32539

Home page URL

Security reports for PublishPress Revisions: Duplicate Posts, Submit, Approve and Schedule Content Changes

Application

PublishPress Revisions: Duplicate Posts, Submit, Approve and Schedule Content Changes

Published on
Mar 25, 2026
Research Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in PublishPress PublishPress Revisions revisionary allows Blind SQL Injection.This issue affects PublishPress Revisions: from n/a through <= 3.7.23.
Affected versions
max 3.7.23.
Status
vulnerable
Previous vulnerability researches
WP Newsletter Subscription (CVE-2024-44012) , Sep 28, 2024
Super Simple Subscriptions (CVE-2025-30523) , Mar 26, 2025
Mailgun Subscriptions (CVE-2025-11876) , Jan 11, 2026
Razorpay Subscription Button Elementor Plugin (CVE-2024-13827) , Mar 07, 2025
Newsletter Subscriptions (CVE-2024-11683) , Dec 13, 2024
New vulnerability
Product Feed PRO for WooCommerce (CVE-2026-32443) , Mar 30, 2026
RegistrationMagic &#8211; Custom Registration Forms, User Registration, Payment, and User Login (CVE-2026-24373) , Mar 30, 2026
RegistrationMagic &#8211; Custom Registration Forms, User Registration, Payment, and User Login (CVE-2026-32385) , Mar 30, 2026
RegistrationMagic &#8211; Custom Registration Forms, User Registration, Payment, and User Login (CVE-2026-32498) , Mar 30, 2026
Gallery Block (Meow Gallery) (CVE-2026-32418) , Mar 30, 2026