Skip to main content

GD Rating System EUVDEUVD-2026-36815

| CVE-2026-42639 CRITICAL
SQL Injection (CWE-89)
2026-06-15 Patchstack GHSA-3cvj-x7f9-wmv2
9.3
CVSS 3.1 · Vendor: Patchstack
Share

Severity by source

Vendor (Patchstack) PRIMARY
9.3 CRITICAL
AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L
vuln.today AI
9.3 CRITICAL

Unauthenticated network-reachable SQLi (AV:N/AC:L/PR:N/UI:N); scope changes to DB authority (S:C); read-only injection per source (C:H, I:N), with query-based A:L.

3.1 AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L
4.0 AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:L/SC:N/SI:N/SA:N

Primary rating from Vendor (Patchstack).

CVSS VectorVendor: Patchstack

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Changed
Confidentiality
High
Integrity
None
Availability
Low

Lifecycle Timeline

2
CVE Published
Jun 22, 2026 - 06:03 cve.org
CRITICAL 9.3
Analysis Generated
Jun 15, 2026 - 22:02 vuln.today

DescriptionCVE.org

Unauthenticated SQL Injection in GD Rating System <= 3.6.2 versions.

AnalysisAI

Unauthenticated SQL injection in the GD Rating System WordPress plugin (versions <= 3.6.2) allows remote attackers to inject arbitrary SQL queries against the WordPress database without any authentication or user interaction. The flaw carries a CVSS 3.1 score of 9.3 with scope change, indicating database tampering can affect resources beyond the plugin itself. No public exploit identified at time of analysis, and the vulnerability is not currently listed in CISA KEV.

Technical ContextAI

GD Rating System is a WordPress plugin developed by Dev4Press (CPE: cpe:2.3:a:dev4press:gd_rating_system) that provides post and content rating functionality. The vulnerability falls under CWE-89 (Improper Neutralization of Special Elements used in an SQL Command), meaning user-supplied input is concatenated into SQL statements without proper parameterization or escaping. In WordPress plugin contexts, this typically arises in AJAX endpoints, REST routes, or front-end form handlers where rating IDs, post IDs, or filter parameters are passed directly to $wpdb queries. The CVSS scope change (S:C) signal indicates that successful exploitation impacts the underlying WordPress database - a security authority distinct from the plugin component itself.

RemediationAI

Patch status from the supplied data is ambiguous - no exact fix version is named in the input, so treat this as: patch availability not independently confirmed from provided references; consult the Patchstack advisory at https://patchstack.com/database/wordpress/plugin/gd-rating-system/vulnerability/wordpress-gd-rating-system-plugin-3-6-2-sql-injection-vulnerability and the Dev4Press plugin page on wordpress.org for a version newer than 3.6.2. If a fixed release is unavailable, deactivate and remove the GD Rating System plugin (rating widgets will disappear from posts), or place the site behind a WAF with WordPress-aware SQLi signatures (Wordfence, Patchstack mu-plugin, Cloudflare Managed Ruleset) accepting that custom rating parameters may need allowlist tuning. As a stop-gap, restrict access to the plugin's AJAX/REST endpoints (typically under /wp-admin/admin-ajax.php with plugin-specific actions, or /wp-json/) via web server rules, understanding this may break legitimate front-end rating submissions.

CVE-2018-5291 HIGH POC
7.5 Jan 08

The GD Rating System plugin 2.3 for WordPress has Directory Traversal in the wp-admin/admin.php panel parameter for the

CVE-2018-5290 HIGH POC
7.5 Jan 08

The GD Rating System plugin 2.3 for WordPress has Directory Traversal in the wp-admin/admin.php panel parameter for the

CVE-2018-5289 HIGH POC
7.5 Jan 08

The GD Rating System plugin 2.3 for WordPress has Directory Traversal in the wp-admin/admin.php panel parameter for the

CVE-2018-5287 HIGH POC
7.5 Jan 08

The GD Rating System plugin 2.3 for WordPress has Directory Traversal in the wp-admin/admin.php panel parameter for the

CVE-2018-5293 MEDIUM POC
6.1 Jan 08

The GD Rating System plugin 2.3 for WordPress has XSS via the wp-admin/admin.php panel parameter for the gd-rating-syste

CVE-2018-5292 MEDIUM POC
6.1 Jan 08

The GD Rating System plugin 2.3 for WordPress has XSS via the wp-admin/admin.php panel parameter for the gd-rating-syste

CVE-2018-5288 MEDIUM POC
6.1 Jan 08

The GD Rating System plugin 2.3 for WordPress has XSS via the wp-admin/admin.php panel parameter for the gd-rating-syste

CVE-2018-5286 MEDIUM POC
6.1 Jan 08

The GD Rating System plugin 2.3 for WordPress has XSS via the wp-admin/admin.php panel parameter for the gd-rating-syste

CVE-2026-57771 HIGH
8.5 Jul 13

Blind SQL injection in the GD Rating System WordPress plugin (versions up to and including 3.7) allows authenticated att

CVE-2024-25093 HIGH
7.1 Feb 29

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Milan Petrovic GD

Share

EUVD-2026-36815 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy