Skip to main content

WP TripAdvisor Review Slider EUVDEUVD-2026-44890

| CVE-2026-15651 MEDIUM
SQL Injection (CWE-89)
2026-07-16 Wordfence GHSA-3gw6-96rm-6cm8
4.9
CVSS 3.1 · Vendor: Wordfence
Share

Severity by source

Vendor (Wordfence) PRIMARY
4.9 MEDIUM
AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
vuln.today AI
4.9 MEDIUM

Administrator credential requirement (PR:H) is the binding constraint; network-reachable but read-only SQL exfiltration justifies C:H with I:N and A:N.

3.1 AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
4.0 AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Primary rating from Vendor (Wordfence).

CVSS VectorVendor: Wordfence

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None

Lifecycle Timeline

2
Analysis Generated
Jul 16, 2026 - 09:06 vuln.today
CVE Published
Jul 16, 2026 - 07:51 cve.org
MEDIUM 4.9

DescriptionCVE.org

The WP TripAdvisor Review Slider plugin for WordPress is vulnerable to generic SQL Injection via the 'filtersource' parameter in all versions up to, and including, 14.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with administrator-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

AnalysisAI

SQL Injection in the WP TripAdvisor Review Slider WordPress plugin (all versions through 14.6) allows authenticated attackers holding administrator-level credentials to append arbitrary SQL to existing queries via the unsanitized 'filtersource' parameter, exposing sensitive data stored in the WordPress database. The flaw originates from insufficient escaping and missing prepared statement usage across multiple display and admin class files identified by Wordfence. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Obtain WordPress admin credentials via phishing or reuse
Delivery
Authenticate to WordPress backend as administrator
Exploit
Submit crafted 'filtersource' parameter to vulnerable plugin endpoint
Execution
Injected SQL appended to existing query
Persist
Database returns sensitive rows (hashes, keys, emails)
Impact
Exfiltrate extracted data

Vulnerability AssessmentAI

Exploitation Exploitation requires a valid WordPress account with administrator-level role or higher - this is the primary limiting factor and is confirmed by the CVSS PR:H metric. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment Real-world risk is moderate-to-low despite the C:H confidentiality impact rating. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker who has obtained WordPress administrator credentials (whether through phishing, credential stuffing, or a separate compromise) navigates to a page or widget rendering TripAdvisor reviews and submits a crafted value in the 'filtersource' parameter appending malicious SQL. The injected clause causes the database to return additional rows containing sensitive WordPress data such as password hashes, API keys, or user email addresses. …
Remediation Update the WP TripAdvisor Review Slider plugin to the version corresponding to changeset 3607754 or later via the WordPress plugin repository; the exact patched release version number is not independently confirmed from the available data, so administrators should check the plugin's changelog directly at https://plugins.trac.wordpress.org/changeset/3607754/wp-tripadvisor-review-slider to identify the target version and install it through the WordPress admin panel or WP-CLI. … Detailed patch versions, workarounds, and compensating controls in full report.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

EUVD-2026-44890 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy