SQL Injection Vulnerability in Nelio Software's AB Testing Plugin

CVE-2026-25378

What is CVE-2026-25378?

An SQL injection vulnerability exists in Nelio Software's Nelio AB Testing plugin, which could allow attackers to execute arbitrary SQL commands through the application. This flaw affects versions up to and including 8.2.4, and could enable malicious users to access sensitive data within the database through crafted input strings. It's crucial for users of the affected versions to apply necessary updates or security patches to mitigate the risk of exploitation.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch →

References