cleantalk
Vulnerabilities and Security Researches

Visualizer: Tables and Charts Manager for WordPress, CVE-2024-3750

CVE, Research URL

CVE-2024-3750

Home page URL

Security reports for Visualizer: Tables and Charts Manager for WordPress

Application

Visualizer: Tables and Charts Manager for WordPress

Published on
May 16, 2024
Research Description
The Visualizer: Tables and Charts Manager for WordPress plugin for WordPress is vulnerable to unauthorized modification and retrieval of data due to a missing capability check on the getQueryData() function in all versions up to, and including, 3.10.15. This makes it possible for authenticated attackers, with subscriber-level access and above, to perform arbitrary SQL queries that can be leveraged for privilege escalation among many other actions.
Affected versions
max 3.11.0.
Status
vulnerable
Previous vulnerability researches
Visualizer: Tables and Charts Manager for WordPress (CVE-2025-12483) , Dec 04, 2025
Visualizer: Tables and Charts Manager for WordPress (CVE-2025-1065) , Feb 21, 2025
Visualizer: Tables and Charts Manager for WordPress (CVE-2024-35736) , Jun 10, 2024
Visualizer: Tables and Charts Manager for WordPress (CVE-2022-2256) , Jun 07, 2024
Visualizer: Tables and Charts Manager for WordPress (CVE-2022-2444) , Jun 07, 2024
New vulnerability
User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor (CVE-2025-13054) , Dec 04, 2025
Visualizer: Tables and Charts Manager for WordPress (CVE-2025-12483) , Dec 04, 2025
Orbit Fox by ThemeIsle (CVE-2025-12045) , Dec 04, 2025
Orbit Fox by ThemeIsle (CVE-2025-10874) , Dec 04, 2025
SM CountDown Widget (CVE-2025-11880) , Nov 14, 2025