cleantalk
Vulnerabilities and Security Researches

Pricing Table by Supsystic, CVE-2020-37243

CVE, Research URL

CVE-2020-37243

Home page URL

Security reports for Pricing Table by Supsystic

Application

Pricing Table by Supsystic

Published on
May 16, 2026
Research Description
Supsystic Pricing Table 1.8.7 contains an SQL injection vulnerability in the 'sidx' GET parameter that allows unauthenticated attackers to execute arbitrary SQL queries through the getListForTbl action. The plugin also contains stored cross-site scripting vulnerabilities in the 'Edit name' and 'Edit HTML' fields that execute malicious scripts when viewing pricing tables.
Affected versions
max 1.8.7.
Status
vulnerable
Previous vulnerability researches
WordPress Plugin for Google Maps – WP MAPS (CVE-2024-2386) , Jul 01, 2024
WordPress Plugin for Google Maps – WP MAPS (CVE-2025-3504) , Apr 25, 2026
WordPress Plugin for Google Maps – WP MAPS (CVE-2025-3503) , May 07, 2025
WordPress Plugin for Google Maps – WP MAPS (CVE-2025-3502) , May 07, 2025
WordPress Plugin for Google Maps – WP MAPS (CVE-2025-67535) , Jan 09, 2026
New vulnerability
WordPress Plugin for Google Maps – WP MAPS (CVE-2026-6381) , May 19, 2026
BuddyPress (CVE-2020-37233) , May 19, 2026
Advanced Access Manager – Restricted Content, Users & Roles, Enhanced Security and More (CVE-2026-42674) , May 19, 2026
Anti-Malware Security and Brute-Force Firewall (CVE-2021-47977) , May 19, 2026
Pricing Table by Supsystic (CVE-2020-37243) , May 19, 2026