CVE-2025-22728
published 2026-01-08CVE-2025-22728: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in AmentoTech Workreap (theme's plugin) workreap allows SQL…
PriorityP354high8.5CVSS 3.1
AVNACLPRLUINSCCHINAL
EPSS
0.32%
23.8th percentile
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in AmentoTech Workreap (theme's plugin) workreap allows SQL Injection.This issue affects Workreap (theme's plugin): from n/a through <= 3.3.6.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| amentotech | workreap | <= 3.3.6 | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-jx85-v8cw-87h5: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in AmentoTech Workreap (theme's plugin) workreap al
ghsa_unreviewed·2026-01-08
CVE-2025-22728 [CRITICAL] CWE-89 GHSA-jx85-v8cw-87h5: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in AmentoTech Workreap (theme's plugin) workreap al
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in AmentoTech Workreap (theme's plugin) workreap allows SQL Injection.This issue affects Workreap (theme's plugin): from n/a through <= 3.3.6.
GHSA
XWiki Platform vulnerable to SQL injection through XWiki#searchDocuments API
ghsa·2025-07-25
CVE-2025-54385 [HIGH] CWE-20 XWiki Platform vulnerable to SQL injection through XWiki#searchDocuments API
XWiki Platform vulnerable to SQL injection through XWiki#searchDocuments API
### Impact
It's possible to execute any SQL query in Oracle by using the function like [DBMS_XMLGEN or DBMS_XMLQUERY](https://docs.oracle.com/en/database/oracle/oracle-database/19/arpls/DBMS_XMLGEN.html).
The XWiki#searchDocuments APIs are not sanitizing the query at all and even if they force a specific select, Hibernate allows using any native function in an HQL query (for example in the WHERE).
### Patches
This has been patched in 16.10.6 and 17.3.0-rc-1.
### Workarounds
There is no known workaround, other than upgrading XWiki.
### References
https://jira.xwiki.org/browse/XWIKI-22728
### For more information
If you have any questions or comments about this advisory:
* Open an issue in [Jira XWiki.org
No detection rules found.
No public exploits indexed.
2026-01-08
Published