CVE-2025-10163 | List Category Posts Plugin up to 0.91.0 on WordPress Shortcode catlist sql injection

A vulnerability classified as critical was found in List Category Posts Plugin up to 0.91.0 on WordPress. Affected by this issue is the function catlist of the component Shortcode Handler. The manipulation results in sql injection.

This vulnerability is reported as CVE-2025-10163. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More