SQL Injection Vulnerability in Geo Mashup Plugin by WordPress
CVE-2026-48967
8.5HIGH
What is CVE-2026-48967?
The Geo Mashup plugin for WordPress contains a SQL Injection vulnerability that affects versions up to 1.13.19. This vulnerability allows attackers to manipulate SQL queries by injecting malicious code, which can lead to unauthorized access to sensitive data or perform unintended operations on the database. It is crucial for users of this plugin to apply necessary security patches or update to a secure version to mitigate potential risks.
Affected Version(s)
Geo Mashup <= 1.13.19