CVE-2025-22352

Name of the Vulnerable Software and Affected Versions ELEX WooCommerce Advanced Bulk Edit Products, Prices & Attributes versions 1.4.8 and earlier

Description The issue is related to an SQL Injection vulnerability, specifically a Blind SQL Injection, which occurs due to the improper neutralization of special elements used in an SQL command. This allows an attacker to inject malicious SQL code, potentially leading to unauthorized access or modification of data.

Recommendations For versions 1.4.8 and earlier, update to a version later than 1.4.8 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.