CVE-2025-1648 | yawaveadmin Yawave Plugin up to 2.9.1 on WordPress lbid sql injection

February 25, 2025 Yanac

A vulnerability has been found in yawaveadmin Yawave Plugin up to 2.9.1 on WordPress and classified as critical. This vulnerability affects unknown code. The manipulation of the argument lbid leads to sql injection.

This vulnerability was named CVE-2025-1648. The attack can be initiated remotely. There is no exploit available.VulDB Recent EntriesRead More

CVE-2025-1675 | zephyrproject-rtos Zephyr up to 4.0 dns_pack.c dns_copy_qname lb_size out-of-bounds (GHSA-2m84-5hfw-m8v4)
CVE-2025-1063 | techlabpro1 Classified Listing Plugin up to 4.0.4 on WordPress rtcl_taxonomy_settings_export information disclosure