CVE-2026-24993

Publication date

2026-03-25 16:14:36

Family

Patchstack

State

PUBLISHED

Description

Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) vulnerability in WPFactory Advanced WooCommerce Product Sales Reporting webd-woocommerce-advanced-reporting-statistics allows Blind SQL Injection.This issue affects Advanced WooCommerce Product Sales Reporting: from n/a through <= 4.1.3.