Infility Global, CVE-2026-8163

CVE, Research URL: CVE-2026-8163
Home page URL: Security reports for Infility Global
Application: Infility Global
Published on: Jun 23, 2026
Research Description: The Infility Global WordPress plugin before 2.15.19 does not properly sanitize and escape some parameters before using them in SQL statements, leading to a SQL Injection vulnerability exploitable by authenticated users with Subscriber-level access and above.
Affected versions: max 2.15.19.
Status: vulnerable