CVE-2025-30876

Published Apr 1, 2025

Last updated 4 days ago

CVSS critical 9.3

Overview

Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Ads by WPQuads Ads by WPQuads allows SQL Injection. This issue affects Ads by WPQuads: from n/a through 2.0.87.1.
Source
audit@patchstack.com
NVD status
Awaiting Analysis

Risk scores

CVSS 3.1

Type
Secondary
Base score
9.3
Impact score
4.7
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L
Severity
CRITICAL

Weaknesses

audit@patchstack.com
CWE-89

Social media

Hype score
Not currently trending

  1. [CVE-2025-30876: CRITICAL] Beware of SQL Injection vulnerability in Ads by WPQuads (versions up to 2.0.87.1) allowing unauthorized access. Keep your website secure with updates.#cybersecurity,#vulnerability https://t.co/iwEy4wj18S https://t.co/CeySlA0W56

    @CveFindCom

    1 Apr 2025

    22 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References