CVE-2026-48837
HIGH NVDCVSS Score
8.5
Severity
HIGH
Source
NVD
Published
May 25, 2026
Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Unlimited Elements For Elementor allows Blind SQL Injection. This issue affects Unlimited Elements For Elementor: from n/a through 2.0.8.