CVE-2026-8163 - Infility Global < 2.15.19 - Subscriber+ SQL Injection via order Parameter
CVE ID :CVE-2026-8163
Published : June 23, 2026, 6 a.m. | 3 hours, 40 minutes ago
Description :The Infility Global WordPress plugin before 2.15.19 does not properly sanitize and escape some parameters before using them in SQL statements, leading to a SQL Injection vulnerability exploitable by authenticated users with Subscriber-level access and above.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Published : June 23, 2026, 6 a.m. | 3 hours, 40 minutes ago
Description :The Infility Global WordPress plugin before 2.15.19 does not properly sanitize and escape some parameters before using them in SQL statements, leading to a SQL Injection vulnerability exploitable by authenticated users with Subscriber-level access and above.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...