CVE-2025-32643

Name of the Vulnerable Software and Affected Versions: WPGYM versions prior to 65.0

Description: The issue is related to an Improper Neutralization of Special Elements used in an SQL Command, also known as SQL Injection, which allows Blind SQL Injection. This is due to the improper handling of special elements in SQL commands.

Recommendations: For versions prior to 65.0, update to version 65.0 to resolve the issue. As a temporary workaround, consider restricting access to sensitive database queries to minimize the risk of exploitation. Avoid using user-supplied input in SQL commands until the issue is resolved.