{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-6674", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2026-04-20T14:05:00.181Z", "datePublished": "2026-04-21T02:25:40.676Z", "dateUpdated": "2026-04-21T12:58:21.763Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-21T02:25:40.676Z"}, "affected": [{"vendor": "tholstkabelbwde", "product": "Plugin: CMS f\u00fcr Motorrad Werkst\u00e4tten", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "1.0.0", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The Plugin: CMS f\u00fcr Motorrad Werkst\u00e4tten plugin for WordPress is vulnerable to SQL Injection via the 'arttype' parameter in all versions up to, and including, 1.0.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with subscriber-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database."}], "title": "Plugin: CMS f\u00fcr Motorrad Werkst\u00e4tten <= 1.0.0 - Authenticated (Subscriber+) SQL Injection via 'arttype' Parameter", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/af4bd5f6-4f0e-4035-8544-48154a05cef1?source=cve"}, {"url": "https://plugins.trac.wordpress.org/browser/cms-fuer-motorrad-werkstaetten/trunk/includes/cfmw-positions.php#L207"}, {"url": "https://plugins.trac.wordpress.org/browser/cms-fuer-motorrad-werkstaetten/tags/1.0.0/includes/cfmw-positions.php#L207"}, {"url": "https://plugins.trac.wordpress.org/browser/cms-fuer-motorrad-werkstaetten/trunk/includes/cfmw-positions.php#L202"}, {"url": "https://plugins.trac.wordpress.org/browser/cms-fuer-motorrad-werkstaetten/tags/1.0.0/includes/cfmw-positions.php#L202"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')", "cweId": "CWE-89", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "baseScore": 6.5, "baseSeverity": "MEDIUM"}}], "credits": [{"lang": "en", "type": "finder", "value": "R\u00e9gis SENET"}], "timeline": [{"time": "2026-04-20T14:05:55.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-21T12:58:08.325827Z", "id": "CVE-2026-6674", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-21T12:58:21.763Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-6674", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-21T12:58:08.325827Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-21T12:58:12.573Z"}}], "cna": {"title": "Plugin: CMS f\u00fcr Motorrad Werkst\u00e4tten <= 1.0.0 - Authenticated (Subscriber+) SQL Injection via 'arttype' Parameter", "credits": [{"lang": "en", "type": "finder", "value": "R\u00e9gis SENET"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}}], "affected": [{"vendor": "tholstkabelbwde", "product": "Plugin: CMS f\u00fcr Motorrad Werkst\u00e4tten", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "1.0.0"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2026-04-20T14:05:55.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/af4bd5f6-4f0e-4035-8544-48154a05cef1?source=cve"}, {"url": "https://plugins.trac.wordpress.org/browser/cms-fuer-motorrad-werkstaetten/trunk/includes/cfmw-positions.php#L207"}, {"url": "https://plugins.trac.wordpress.org/browser/cms-fuer-motorrad-werkstaetten/tags/1.0.0/includes/cfmw-positions.php#L207"}, {"url": "https://plugins.trac.wordpress.org/browser/cms-fuer-motorrad-werkstaetten/trunk/includes/cfmw-positions.php#L202"}, {"url": "https://plugins.trac.wordpress.org/browser/cms-fuer-motorrad-werkstaetten/tags/1.0.0/includes/cfmw-positions.php#L202"}], "descriptions": [{"lang": "en", "value": "The Plugin: CMS f\u00fcr Motorrad Werkst\u00e4tten plugin for WordPress is vulnerable to SQL Injection via the 'arttype' parameter in all versions up to, and including, 1.0.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with subscriber-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-89", "description": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-21T02:25:40.676Z"}}}, "cveMetadata": {"cveId": "CVE-2026-6674", "state": "PUBLISHED", "dateUpdated": "2026-04-21T12:58:21.763Z", "dateReserved": "2026-04-20T14:05:00.181Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2026-04-21T02:25:40.676Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The Plugin: CMS f\u00fcr Motorrad Werkst\u00e4tten plugin for WordPress is vulnerable to SQL Injection via the 'arttype' parameter in all versions up to, and including, 1.0.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with subscriber-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database."}], "id": "CVE-2026-6674", "lastModified": "2026-04-22T20:22:50.570", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "security@wordfence.com", "type": "Primary"}]}, "published": "2026-04-21T03:16:09.070", "references": [{"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/browser/cms-fuer-motorrad-werkstaetten/tags/1.0.0/includes/cfmw-positions.php#L202"}, {"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/browser/cms-fuer-motorrad-werkstaetten/tags/1.0.0/includes/cfmw-positions.php#L207"}, {"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/browser/cms-fuer-motorrad-werkstaetten/trunk/includes/cfmw-positions.php#L202"}, {"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/browser/cms-fuer-motorrad-werkstaetten/trunk/includes/cfmw-positions.php#L207"}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/af4bd5f6-4f0e-4035-8544-48154a05cef1?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-89"}], "source": "security@wordfence.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,1.0.0]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "Plugin: CMS f\u00fcr Motorrad Werkst\u00e4tten", "source": "cna", "vendor": "tholstkabelbwde"}, "product": "plugin:_cms_f\u00fcr_motorrad_werkst\u00e4tten", "vendor": "tholstkabelbwde"}, {"configurations": [{"platform": null, "status": "unaffected", "versions": null}], "enrichment": {"confidence": 80.0, "confidence_source": "inferred", "scores": [{"score": 80.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "product": "wordpress", "vendor": "wordpress"}], "analysis": {"en": {"generated_at": "2026-04-21T15:28:23.980115+00:00", "value": {"mitigation_remediation": ["Upgrade the CMS f\u00fcr Motorrad Werkst\u00e4tten plugin to a version beyond 1.0.0, if available.", "If no newer release exists, remove or neutralize the \u2018arttype\u2019 parameter in the plugin code or block its use for non\u2011administrative roles.", "Enforce stricter role\u2011based access controls so that only administrators can trigger the vulnerable query, or disable subscriber access to the affected feature until a patch is released."], "summary": {"action": "Patch Immediately", "impact": "SQL Injection allowing data extraction"}, "threat_synthesis": {"affected_systems": "WordPress installations using the tholstkabelbwde \"CMS f\u00fcr Motorrad Werkst\u00e4tten\" plugin up to and including version 1.0.0 are affected. No other vendors or products are listed.", "description_and_impact": "The CMS f\u00fcr Motorrad Werkst\u00e4tten plugin is vulnerable to SQL injection via the \u2018arttype\u2019 parameter in all releases up to 1.0.0. The lack of proper escaping and query preparation lets an attacker who has authenticated subscriber\u2011level or higher privileges append malicious SQL to the existing statement, enabling extraction of sensitive database content. The flaw does not provide code execution but can compromise confidential information.", "risk_and_exploitability": "The CVSS score of 6.5 indicates a moderate severity. EPSS data is not available, and the vulnerability is not listed in CISA KEV. Exploitation requires that the attacker is already authenticated as a subscriber or higher; thus the attack vector is likely local application with elevated privileges. Successful exploitation would allow the attacker to read or export data from the WordPress database, posing a confidentiality risk."}}}}, "created": "2026-04-21T15:37:55.175488+00:00", "updated": "2026-04-22T11:46:51.035100+00:00", "vendors": ["tholstkabelbwde", "tholstkabelbwde$PRODUCT$plugin:_cms_f\u00fcr_motorrad_werkst\u00e4tten", "wordpress", "wordpress$PRODUCT$wordpress"]}