- Description
- Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in winkm89 teachPress allows SQL Injection. This issue affects teachPress: from n/a through 9.0.11.
- Source
- audit@patchstack.com
- NVD status
- Analyzed
- Products
- teachpress
CVSS 3.1
- Type
- Primary
- Base score
- 8.8
- Impact score
- 5.9
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
- audit@patchstack.com
- CWE-89
- Hype score
- Not currently trending
[CVE-2025-32149: HIGH] A 'SQL Injection' vulnerability in winkm89 teachPress (versions n/a-9.0.11) allows attackers to manipulate data. Ensure timely software updates for cybersecurity protection.#cybersecurity,#vulnerability https://t.co/iI6hH4NqvV https://t.co/upLqBMg4m0
@CveFindCom
7 Apr 2025
18 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
๐จ CVE-2025-32149 ๐ด HIGH (8.5) ๐ข winkm89 - teachPress ๐๏ธ Unknown Version ๐ https://t.co/CqTM3c2t4m #CyberCron #VulnAlert #InfoSec https://t.co/Gi6B0og92r
@cybercronai
6 Apr 2025
13 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:mtrv:teachpress:*:*:*:*:*:wordpress:*:*",
"matchCriteriaId": "358CD62C-3E7D-45A7-BE3C-35CA664690C2",
"versionEndExcluding": "9.0.12",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
]