CVE-2025-12750 | Groundhogg Plugin up to 4.2.6.1 on WordPress term sql injection

November 21, 2025 Yanac

A vulnerability categorized as critical has been discovered in Groundhogg Plugin up to 4.2.6.1 on WordPress. The affected element is an unknown function. Such manipulation of the argument term leads to sql injection.

This vulnerability is uniquely identified as CVE-2025-12750. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More

CVE-2025-12170 | Checkbox Plugin up to 2.8.10 on WordPress AJAX Endpoint wp_ajax_nopriv_checkbox_clean_log authorization
CVE-2025-12022 | ELEXtensions ELEX WordPress HelpDesk & Customer Ticketing System Plugin AJAX Endpoint eh_crm_settings_restore_trash authorization