Critical severity9.3NVD Advisory· Published Nov 6, 2025· Updated Apr 27, 2026
CVE-2025-48089
CVE-2025-48089
Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Rainbow-Themes Education WordPress Theme | HiStudy histudy allows SQL Injection.This issue affects Education WordPress Theme | HiStudy: from n/a through < 3.1.0.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <3.1.0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.