CyberRota
← Ana sayfaya dön

CVE-2026-12512

HIGH · CVSS 8.6

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-07-15T06:16:44.757 · Çekilme zamanı: 2026-07-15T12:06:57.090950+00:00

CyberRota Yorumu

SQL Injection riski içeriyor.

CVE
CVE-2026-12512
Severity
HIGH
CVSS
8.6
EPSS
Yok
WordPress

Orijinal NVD Açıklaması

The Quotes llama WordPress plugin before 3.1.6 does not properly sanitize and escape a user-supplied parameter before using it in a SQL query, allowing unauthenticated attackers to perform UNION-based SQL injection and read arbitrary data from the database, including password hashes.