EZ SQL Reports Shortcode Widget and DB Backup

Vulnerabilities 7Slug elisqlreportsLatest version 5.25.25WordPress.org →

Minimum safe version

5.25.25

Update to 5.25.25 or later to address 7 fixable vulnerabilities

Latest available5.25.25 ✓

Medium 6.4

2025-06-29< 5.25.25

EZ SQL Reports Shortcode Widget and DB Backup <= 5.25.11 - Authenticated (Contributor+) Stored Cross-Site Scripting via SQLREPORT Shortcode

High 8.2

2025-03-27< 5.25.10

CVE-2025-30788

High 7.1

2025-03-27< 5.25.10

CVE-2025-30787

High 8.8

2025-03-25≥ 4.11.13 and < 5.25.10

EZ SQL Reports Shortcode Widget and DB Backup 4.11.13 - 5.25.08 - Cross-Site Request Forgery to Remote Code Execution

Medium 6.5

2025-02-25< 5.25.08

CVE-2025-26887

N/A

< 4.11.37

EZ SQL Reports <= 4.11.33 - Authenticated Arbitrary File Download

N/A

< 4.11.37

EZ SQL Reports <= 4.11.33 - Authenticated Arbitrary Code Execution