SQL Injection Vulnerability in Simple Download Monitor by Tips and Tricks HQ
CVE-2025-24663
7.6HIGH
What is CVE-2025-24663?
An SQL Injection vulnerability exists in the Simple Download Monitor plugin developed by Tips and Tricks HQ, affecting versions from n/a through 3.9.25. This flaw allows an attacker to execute arbitrary SQL commands, potentially exposing sensitive data or altering the database. Users of the plugin should take immediate action to mitigate the risks associated with this vulnerability.
Affected Version(s)
Simple Download Monitor <= 3.9.25