CVE-2026-60137 | WordPress up to 6.8.5/6.9.4/7.0.1 WP_Query sql injection
A vulnerability identified as critical has been detected in WordPress up to 6.8.5/6.9.4/7.0.1. This impacts an unknown function of the component WP_Query. This manipulation causes sql injection.
This vulnerability is tracked as CVE-2026-60137. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More