PT-2025-29782 · WordPress · Thimpress Wp Pipes

Lvt-Tholv2K

·

Published

2025-07-16

·

Updated

2025-07-16

·

CVE-2025-28982

CVSS v3.1
9.3
VectorAV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L

Name of the Vulnerable Software and Affected Versions:

ThimPress WP Pipes versions through 1.4.3

Description:

ThimPress WP Pipes is susceptible to a SQL injection issue due to improper neutralization of special elements used in SQL commands.

Recommendations:

Update ThimPress WP Pipes to a version later than 1.4.3.

Fix

SQL injection

Weakness Enumeration

CWE-89

Related Identifiers

CVE-2025-28982

Affected Products

Thimpress Wp Pipes