Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-28983

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ClickandPledge Click & Pledge Connect allows Privilege Escalation. This issue affects Click & Pledge Connect: from 25.04010101 through WP6.8.

Published

2025-07-04T12:15:27.437

Last Modified

2025-07-08T16:18:53.607

Status

Awaiting Analysis

Source

[email protected]

Severity

CVSSv3.1: 9.8 (CRITICAL)

Weaknesses
  • Type: Primary
    CWE-89
Affected Vendors & Products

-

References