Description

The SQL Chart Builder WordPress plugin before 2.3.8 does not properly escape user input as it is concatened to SQL queries, making it possible for attackers to conduct SQL Injection attacks against the dynamic filter functionality.

INFO

Published Date :

2026-04-07T06:00:11.585Z

Last Modified :

2026-04-07T16:26:56.057Z

Source :

WPScan
AFFECTED PRODUCTS

The following products are affected by CVE-2026-4079 vulnerability.

Vendors Products
Sql Chart Builder
  • Sql Chart Builder
Wordpress
  • Wordpress
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-4079.

URL Resource
https://wpscan.com/vulnerability/8ec92881-4ae5-458d-995b-f097f2bcc590/ cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System