CVE-2025-58881

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in gopiplus New Simple Gallery new-simple-gallery allows Blind SQL Injection.This issue affects New Simple Gallery: from n/a through <= 8.0.
Configurations

No configuration.

History

23 Apr 2026, 15:33

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 8.5

01 Apr 2026, 17:27

Type Values Removed Values Added
Summary (en) Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in gopiplus New Simple Gallery allows Blind SQL Injection. This issue affects New Simple Gallery: from n/a through 8.0. (en) Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in gopiplus New Simple Gallery new-simple-gallery allows Blind SQL Injection.This issue affects New Simple Gallery: from n/a through <= 8.0.
CVSS v2 : unknown
v3 : 8.5
v2 : unknown
v3 : unknown
References
  • {'url': 'https://patchstack.com/database/wordpress/plugin/new-simple-gallery/vulnerability/wordpress-new-simple-gallery-plugin-8-0-sql-injection-vulnerability?_s_id=cve', 'source': 'audit@patchstack.com'}
  • () https://patchstack.com/database/Wordpress/Plugin/new-simple-gallery/vulnerability/wordpress-new-simple-gallery-plugin-8-0-sql-injection-vulnerability?_s_id=cve -

05 Sep 2025, 14:16

Type Values Removed Values Added
New CVE

Information

Published : 2025-09-05 14:16

Updated : 2026-06-17 09:45


NVD link : CVE-2025-58881

Mitre link : CVE-2025-58881

CVE.ORG link : CVE-2025-58881


JSON object : View

Products Affected

No product.

CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')