CVE-2026-9010 | PixelYourSite Boost Plugin up to 2.0.3 on WordPress current_url/user_name sql injection

A vulnerability was found in PixelYourSite Boost Plugin up to 2.0.3 on WordPress and classified as critical. The affected element is an unknown function. The manipulation of the argument current_url/user_name results in sql injection.

This vulnerability was named CVE-2026-9010. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More