Teachpress

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest

CVE-2025-1321 MEDIUM PATCH This Month

The teachPress plugin for WordPress is vulnerable to SQL Injection via the 'order' parameter of the 'tpsearch' shortcode in all versions up to, and including, 9.0.7 due to insufficient escaping on. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

WordPress SQLi Teachpress PHP

NVD

CVSS 3.1

6.5

EPSS

0.1%

CVE-2025-1321

EPSS 0% CVSS 6.5

MEDIUM PATCH This Month

The teachPress plugin for WordPress is vulnerable to SQL Injection via the 'order' parameter of the 'tpsearch' shortcode in all versions up to, and including, 9.0.7 due to insufficient escaping on. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

WordPress SQLi Teachpress +1

NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy