{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-27T00:35:01.835","vulnerabilities":[{"cve":{"id":"CVE-2025-47671","sourceIdentifier":"audit@patchstack.com","published":"2025-05-23T13:15:42.660","lastModified":"2026-06-17T09:28:31.470","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in LETSCMS MLM Software Binary MLM Plan binary-mlm-plan allows SQL Injection.This issue affects Binary MLM Plan: from n/a through <= 3.0."},{"lang":"es","value":"Vulnerabilidad de neutralización incorrecta de elementos especiales utilizados en un comando SQL ('Inyección SQL') en LETSCMS MLM Software Binary MLM Plan permite la inyección SQL. Este problema afecta al Plan MLM Binario desde n/d hasta la versión 3.0."}],"affected":[{"source":"audit@patchstack.com","affectedData":[{"vendor":"LETSCMS MLM Software","product":"Binary MLM Plan","defaultStatus":"unaffected","collectionURL":"https://wordpress.org/plugins","packageName":"binary-mlm-plan","versions":[{"version":"0","lessThanOrEqual":"3.0","versionType":"custom","status":"affected","changes":[{"at":"5.0","status":"unaffected"}]}]}]}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:L","baseScore":7.6,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":2.3,"impactScore":4.7}],"ssvcV203":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","ssvcData":{"timestamp":"2025-05-23T16:43:33.086671Z","id":"CVE-2025-47671","options":[{"exploitation":"none"},{"automatable":"no"},{"technicalImpact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Secondary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/binary-mlm-plan/vulnerability/wordpress-binary-mlm-plan-3-0-sql-injection-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}}]}