CVE-2025-26590: WordPress Complete Google Seo Scan <= 3.5.1 - SQL Injection Vulnerability

7.6 CVSS

Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Nir Complete Google Seo Scan allows SQL Injection. This issue affects Complete Google Seo Scan: from n/a through 3.5.1.

Classification

CVE ID: CVE-2025-26590

CVSS Base Severity: HIGH

CVSS Base Score: 7.6

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:L

Problem Types

CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Affected Products

Vendor: Nir

Product: Complete Google Seo Scan

References

https://nvd.nist.gov/vuln/detail/CVE-2025-26590
https://patchstack.com/database/wordpress/plugin/complete-google-seo-scan/vulnerability/wordpress-complete-google-seo-scan-3-5-1-sql-injection-vulnerability?_s_id=cve

Timeline

2025-06-06 13:40:22 UTC
CVE

WordPress Complete Google Seo Scan <= 3.5.1 - SQL Injection Vulnerability