Passionate Programmer Peter Wp Data Access vulnerabilities
2 known vulnerabilities affecting passionate_programmer_peter/wp_data_access.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2026-42665P2CRITICALCVSS 9.3≥ n/a, ≤ 5.5.702026-06-15
CVE-2026-42665 [CRITICAL] CWE-89 CVE-2026-42665: Unauthenticated SQL Injection in WP Data Access <= 5.5.70 versions.
Unauthenticated SQL Injection in WP Data Access <= 5.5.70 versions.
nvd
CVE-2025-39582P4MEDIUMCVSS 6.5≤ 5.5.362025-04-16
CVE-2025-39582 [MEDIUM] CWE-79 CVE-2025-39582: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability i
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Passionate Programmer Peter WP Data Access wp-data-access allows DOM-Based XSS.This issue affects WP Data Access: from n/a through <= 5.5.36.
nvd