WordPress ZIP Code Based Content Protection plugin

7.6 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:L

Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in PressTigers ZIP Code Based Content Protection allows SQL Injection. This issue affects ZIP Code Based Content Protection: from n/a through 1.0.0.

Basic Information

ID CVE-2025-59008

Source Patchstack

Published Sep 9, 2025 at 16:25

Affected Product

Vendor PressTigers

Product ZIP Code Based Content Protection

Version n/a

Affected Versions PressTigers ZIP Code Based Content Protection n/a

CWE Classification

CWE-89

References

patchstack.com /database/wordpress/plugin/zip-code-based-content-protection/vulnerability/wordpress-zip-code-based-content-protection-plugin-1-0-0-sql-injection-vulnerability

{
    "lastseen": "",
    "description": "Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in PressTigers ZIP Code Based Content Protection allows SQL Injection. This issue affects ZIP Code Based Content Protection: from n/a through 1.0.0.",
    "published": "2025-09-09T16:25:20.873Z",
    "modified": "2025-09-09T16:25:20.873Z",
    "type": "cve",
    "title": "WordPress ZIP Code Based Content Protection plugin <= 1.0.0 - SQL Injection vulnerability",
    "source": "Patchstack",
    "references": "https://patchstack.com/database/wordpress/plugin/zip-code-based-content-protection/vulnerability/wordpress-zip-code-based-content-protection-plugin-1-0-0-sql-injection-vulnerability?_s_id=cve",
    "id": "CVE-2025-59008",
    "bulletinFamily": "",
    "cwe": [
        "CWE-89"
    ],
    "cvelist": null,
    "sourceData": "PressTigers ZIP Code Based Content Protection n/a",
    "sourceHref": "",
    "cvss": {
        "score": 7.6,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:L",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "ZIP Code Based Content Protection",
    "version": "n/a",
    "vendor": "PressTigers",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

WordPress ZIP Code Based Content Protection plugin <= 1.0.0 - SQL Injection vulnerability_CVE-2025-59008