CVE-2025-11691 | themeisle PPOM Plugin up to 33.0.15 on WordPress Setting get_fields_by_id sql injection

A vulnerability categorized as critical has been discovered in themeisle PPOM Plugin up to 33.0.15 on WordPress. This affects the function PPOM_Meta::get_fields_by_id of the component Setting Handler. Such manipulation leads to sql injection.

This vulnerability is uniquely identified as CVE-2025-11691. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More