Guaven · Sql Chart Builder · CVE-2026-4079
**Name of the Vulnerable Software and Affected Versions**
SQL Chart Builder WordPress plugin versions prior to 2.3.8
**Description**
Improper escaping of user input concatenated to SQL queries allows attackers to perform SQL Injection attacks against the dynamic filter functionality.
**Recommendations**
Update the plugin to version 2.3.8 or later.