CVE-2025-67520

Severity CVSS v4.0:

Pending analysis

Type:

CWE-89 SQL Injection

Publication date:

09/12/2025

Last modified:

09/12/2025

Description

Improper Neutralization of Special Elements used in an SQL Command (&#39;SQL Injection&#39;) vulnerability in Tiny Solutions Media Library Tools media-library-tools allows SQL Injection.This issue affects Media Library Tools: from n/a through

Impact

References to Advisories, Solutions, and Tools

https://vdp.patchstack.com/database/Wordpress/Plugin/media-library-tools/vulnerability/wordpress-media-library-tools-plugin-1-6-15-sql-injection-vulnerability?_s_id=cve