SQL Injection Vulnerability in WP EasyCart by Level Four Development
CVE-2026-32422
8.5HIGH
What is CVE-2026-32422?
An SQL Injection vulnerability in WP EasyCart allows attackers to exploit improperly neutralized input, leading to potential unauthorized access to sensitive database information. This flaw affects versions of WP EasyCart from n/a up to 5.8.13, enabling attackers to conduct blind SQL injection attacks. It is crucial for users of the plugin to implement the necessary patches or upgrades to safeguard their systems against potential exploitation.
Affected Version(s)
WP EasyCart 0 <= 5.8.13