VYPR

Quick Featured Images

by Quick Featured Images

CVEs (1)

  • CVE-2025-11980MedNov 8, 2025
    risk 0.32cvss 4.9epss 0.00

    The Quick Featured Images plugin for WordPress is vulnerable to SQL Injection via the 'delete_orphaned' function in all versions up to, and including, 13.7.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.…