cleantalk
Vulnerabilities and Security Researches

Directory Listings WordPress plugin – uListing, CVE-2025-25151

CVE, Research URL

CVE-2025-25151

Published on
Feb 07, 2025
Research Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in StylemixThemes uListing allows SQL Injection. This issue affects uListing: from n/a through 2.1.6.
Affected versions
Min -, max 2.1.6.
Status
vulnerable