cleantalk

Vulnerabilities and Security Researches

Security report for CVE WordPress Auction Plugin > CVE-2025-22349

CVE, Research URL

CVE-2025-22349

Application

WordPress Auction Plugin

Published on
Jan 07, 2025
Research Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Owen Cutajar & Hyder Jaffari WordPress Auction Plugin allows SQL Injection.This issue affects WordPress Auction Plugin: from n/a through 3.7.
Affected versions
Min -, max 3.7.
Status
vulnerable
Previous vulnerability researches
WordPress Auction Plugin (CVE-2024-54207) , Dec 08, 2024
WordPress Auction Plugin (CVE-2024-51615) , Dec 08, 2024
WordPress Auction Plugin (CVE-2025-22349) , Jan 09, 2025
New vulnerability
Quote Tweet (CVE-2025-22589) , Jan 09, 2025
Huurkalender WP (CVE-2025-22528) , Jan 09, 2025
1003 Mortgage Application (CVE-2025-22592) , Jan 09, 2025
1003 Mortgage Application (CVE-2025-22591) , Jan 09, 2025
Video Embed Optimizer (CVE-2025-22554) , Jan 09, 2025