CVE-2025-52822 – Iqonic Design WP Roadmap SQL Injection Vulnerability

June 20, 2025

CVE ID : CVE-2025-52822

Published : June 20, 2025, 3:15 p.m. | 2 hours, 59 minutes ago

Description : Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in Iqonic Design WP Roadmap allows SQL Injection. This issue affects WP Roadmap: from n/a through 2.1.3.

Severity: 8.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-52825 – Rameez Iqbal Real Estate Manager CSRF Privilege Escalation

Next Article CVE-2025-52791 – Devfelixmoira Knowledge Base Maker CSRF Stored XSS

The Power Of The Intl API: A Definitive Guide To Browser-Native Internationalization

This week in AI dev tools: GPT-5, Claude Opus 4.1, and more (August 8, 2025)

Elastic simplifies log analytics for SREs and developers with launch of Log Essentials

OpenAI launches GPT-5

AI Giant With Highest Staff Retention Rate Is Not Google or Meta

5 ways business leaders can transform workplace culture – and it starts by listening

My 4 favorite image editing apps on Linux – and two are free Photoshop alternatives

How Google’s Genie 3 could change AI video – and let you build your own interactive worlds

Establishing Consistent Data Foundations with Laravel’s Database Population System

Establishing Consistent Data Foundations with Laravel’s Database Population System

Generate Postman Collections from Laravel Routes

This Week in Laravel: Free Laravel Idea, Laracon News, and More

Microsoft Copilot quietly tests ChatGPT Connectors feature, lets you view OneDrive content

Microsoft Copilot quietly tests ChatGPT Connectors feature, lets you view OneDrive content

Debian 13 “Trixie” Released After 2 Years of Development

HandBrake 1.10 Released with Discord-Friendly 10MB Presets

CVE-2025-52822 – Iqonic Design WP Roadmap SQL Injection Vulnerability

CVE-2025-54997 – OpenBao Audit Subsystem Privilege Escalation

CVE-2025-55013 – Assemblyline 4 Service Client Path Traversal Vulnerability

FIN6 Uses AWS-Hosted Fake Resumes on LinkedIn to Deliver More_eggs Malware

No console needed — this discounted bundle comes with an Xbox Controller, Fire TV Stick 4K, and Game Pass Ultimate

CVE-2025-53943 – VoidBot Open-Source Discord Bot Command Injection Vulnerability

CISA Warns of KUNBUS Auth Bypass Vulnerabilities Exposes Systems to Remote Attacks

CVE-2025-7459 – Code-projects Mobile Shop SQL Injection Vulnerability

CVE-2025-7488 – JoeyBling SpringBoot_MyBatisPlus Remote File Path Traversal Vulnerability

Google DeepMind Introduces Genie 3: A General Purpose World Model that can Generate an Unprecedented Diversity of Interactive Environments

CVE-2025-49488 – Falcon_Linux, Kestrel, Lapwing_Linux Router Resource Leak Exposure

CVE-2025-52822 – Iqonic Design WP Roadmap SQL Injection Vulnerability

Related Posts