SQL Injection Vulnerability in TeachPress Plugin for WordPress
CVE-2025-1321

8.8HIGH

Key Information:

Vendor: WordPress
Status: TeacHPress
Vendor: CVE Published:; 4 March 2025

Summary

The TeachPress plugin for WordPress is susceptible to an SQL injection vulnerability via the 'order' parameter in the 'tpsearch' shortcode. This flaw arises from inadequate escaping of user-supplied input and a lack of proper preparation in the corresponding SQL query. Consequently, authenticated attackers with Contributor-level access or higher can manipulate existing SQL queries, allowing them to execute additional queries that may extract sensitive data from the database.

Affected Version(s)

teachPress * <= 9.0.7

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://plugins.trac.wordpress.org/changeset?sfp_email=&s...

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 4, 2025
Vulnerability Reserved
Feb 14, 2025

Credit

Krzysztof Zając