CVE-2025-10036 | Featured Image from URL FIFU Plugin up to 5.2.7 on WordPress get_all_urls sql injection

A vulnerability was found in Featured Image from URL FIFU Plugin up to 5.2.7 on WordPress. It has been classified as critical. Affected by this vulnerability is the function get_all_urls. This manipulation causes sql injection.

This vulnerability is tracked as CVE-2025-10036. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More