Medium severity6.8NVD Advisory· Published Jan 26, 2026· Updated Apr 15, 2026
CVE-2025-14973
CVE-2025-14973
Description
The Recipe Card Blocks Lite WordPress plugin before 3.4.13 does not sanitize and escape a parameter before using it in a SQL statement, allowing contributors and above to perform SQL injection attacks.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <3.4.13
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.