Critical
CVSS 9.3
Overview
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in shinetheme Traveler allows SQL Injection. This issue affects Traveler: from n/a through n/a.
CVE-2025-52714
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injecti...
Risk analysis
This vulnerability is rated 🔴 CRITICAL.
- CVSS: 9.3 (CRITICAL)
- Detected tags: sql (tag impact: MODERATE)
Recommended actions:
- Use parameterized queries/ORM (avoid string concatenation).
- Add WAF rules and input validation.