Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

链接： https://github.com/advisories/GHSA-4xjq-p3mf-wp23

CVSS 评分： 9.3

参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2025-52714
https://patchstack.com/database/wordpress/theme/traveler/vulnerability/wordpress-traveler-3-2-2-sql-injection-vulnerability?_s_id=cve
https://github.com/advisories/GHSA-4xjq-p3mf-wp23

描述：

Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in shinetheme Traveler allows SQL Injection. This issue affects Traveler: from n/a through n/a.

安全公告

#Github Advisory

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

http://example.com/2025/07/16/github_1082694910/

作者

lianccc

发布于

2025年7月16日

许可协议

zoomeye_team Twitter Update ! 上一篇

Deserialization of Untrusted Data vulnerability in Codexpert, Inc CoSchool LMS allows Object 下一篇