How severe is CVE-2025-24659?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.6 out of 10.

What type of vulnerability is CVE-2025-24659?

This is classified as CWE-89, which is a common weakness in software security.

CVE-2025-24659

HIGH Year: 2025

CVSS v3 Score

7.6

High

Weakness Type

CWE-89

View all →

Vulnerability Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WordPress Download Manager Premium Packages allows Blind SQL Injection. This issue affects Premium Packages: from n/a through 5.9.6.

CVE-2016-8928

HIGH

CVSS:7.6(High)

IBM Kenexa LMS on Cloud is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the ...

CWE-892016

CVE-2016-8930

HIGH

CVSS:7.6(High)

CWE-892016

CVE-2019-19094

HIGH

CVSS:7.6(High)

Lack of input checks for SQL queries in ABB eSOMS versions 3.9 to 6.0.3 might allow an attacker SQL injection attacks against the backend database.

CWE-892019

CVE-2019-4481

HIGH

CVSS:7.6(High)

IBM Contract Management 10.1.0 through 10.1.3 and IBM Emptoris Spend Analysis 10.1.0 through 10.1.3 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which...

CWE-892019

CVE-2019-4483

HIGH

CVSS:7.6(High)

CWE-892019

CVE-2019-4752

HIGH

CVSS:7.6(High)

IBM Emptoris Spend Analysis and IBM Emptoris Strategic Supply Management Platform 10.1.0.x, 10.1.1.x, and 10.1.3.x is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL st...

CWE-892019

CVE-2025-24659

Vulnerability Description

Related Vulnerabilities

CVE-2016-8928

CVE-2016-8930

CVE-2019-19094

CVE-2019-4481

CVE-2019-4483

CVE-2019-4752