VYPR

Apocalypse Meow

by WordPress

Source repositories

CVEs (1)

  • CVE-2026-3523MedMar 5, 2026
    risk 0.32cvss 4.9epss 0.00

    The Apocalypse Meow plugin for WordPress is vulnerable to SQL Injection via the 'type' parameter in all versions up to, and including, 22.1.0. This is due to a flawed logical operator in the type validation check on line 261 of ajax.php — the condition uses `&&` (AND) instead…